In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06160806; Issue ID: ALPS06160820.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: MediaTek
Published: 2022-03-09T17:02:46
Updated: 2024-08-03T02:02:30.454Z
Reserved: 2021-10-12T00:00:00
Link: CVE-2022-20056
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-03-10T17:45:05.983
Modified: 2022-03-18T01:09:29.063
Link: CVE-2022-20056
Redhat
No data.