VDB

CISA-2023-20602

CISA-2023-20602 PUBLISHED CVSS 6.7 MEDIUM

Reported by MediaTek · Published February 6, 2023

In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07494107; Issue ID: ALPS07494107.

Risk Scores

CVSS 3.1
6.7
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
MediaTek, Inc.MT6735, MT6737, MT6739, MT6753, MT6757, MT6761, MT6763, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6885, MT6889, MT6893, MT6895, MT6983Android 10.0, 11.0, 12.0, 13.0
MediaTek, Inc.MT6735, MT6737, MT6739, MT6753, MT6757, MT6761, MT6763, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6885, MT6889, MT6893, MT6895, MT6983Android 10.0, 11.0, 12.0, 13.0, Android 10.0, 11.0, 12.0, 13.0

Timeline

  • Feb 6, 2023 CVE Published
  • Mar 26, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›