CVE-2023-20819 - Vulnerability Details

In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privilege needed. User interaction is not needed for exploitation. Patch ID: MOLY01068234; Issue ID: ALPS08010003.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.02194.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Mediatek	Lr11 Lr12a Lr13 Mt2731 Mt6570 Mt6580 Mt6595 Mt6732 Mt6735 Mt6737 Mt6737m Mt6738 Mt6739 Mt6750 Mt6750s Mt6752 Mt6753 Mt6755 Mt6757 Mt6758 Mt6761 Mt6762 Mt6762d Mt6762m Mt6763 Mt6765 Mt6765t Mt6767 Mt6768 Mt6769 Mt6769t Mt6769z Mt6771 Mt6775 Mt6779 Mt6781 Mt6783 Mt6785 Mt6785t Mt6789 Mt6795 Mt6797 Mt6799 Mt6813 Mt6815 Mt6833 Mt6835 Mt6853 Mt6855 Mt6873 Mt6875 Mt6875t Mt6877 Mt6878 Mt6879 Mt6883 Mt6885 Mt6886 Mt6889 Mt6891 Mt6893 Mt6895 Mt6895t Mt6896 Mt6897 Mt6983 Mt6985 Mt6989 Mt8666 Mt8666a Mt8667 Mt8673 Mt8675 Mt8765 Mt8766 Mt8766z Mt8768 Mt8768a Mt8768b Mt8768t Mt8768z Mt8781 Mt8786 Mt8788 Mt8788t Mt8788x Mt8788z Mt8791 Mt8791t Mt8797 Mt8798 Nr15 Nr16 Nr17

Configuration 1 [-]

AND

OR	cpe:2.3:o:mediatek:lr11:-:::::::*
	cpe:2.3:o:mediatek:lr12a:-:::::::*
	cpe:2.3:o:mediatek:lr13:-:::::::*
	cpe:2.3:o:mediatek:nr15:-:::::::*
	cpe:2.3:o:mediatek:nr16:-:::::::*
	cpe:2.3:o:mediatek:nr17:-:::::::*

OR	cpe:2.3:h:mediatek:mt2731:-:::::::*
	cpe:2.3:h:mediatek:mt6570:-:::::::*
	cpe:2.3:h:mediatek:mt6580:-:::::::*
	cpe:2.3:h:mediatek:mt6595:-:::::::*
	cpe:2.3:h:mediatek:mt6732:-:::::::*
	cpe:2.3:h:mediatek:mt6735:-:::::::*
	cpe:2.3:h:mediatek:mt6737:-:::::::*
	cpe:2.3:h:mediatek:mt6737m:-:::::::*
	cpe:2.3:h:mediatek:mt6738:-:::::::*
	cpe:2.3:h:mediatek:mt6739:-:::::::*
	cpe:2.3:h:mediatek:mt6750:-:::::::*
	cpe:2.3:h:mediatek:mt6750s:-:::::::*
	cpe:2.3:h:mediatek:mt6752:-:::::::*
	cpe:2.3:h:mediatek:mt6753:-:::::::*
	cpe:2.3:h:mediatek:mt6755:-:::::::*
	cpe:2.3:h:mediatek:mt6757:-:::::::*
	cpe:2.3:h:mediatek:mt6758:-:::::::*
	cpe:2.3:h:mediatek:mt6761:-:::::::*
	cpe:2.3:h:mediatek:mt6762:-:::::::*
	cpe:2.3:h:mediatek:mt6762d:-:::::::*
	cpe:2.3:h:mediatek:mt6762m:-:::::::*
	cpe:2.3:h:mediatek:mt6763:-:::::::*
	cpe:2.3:h:mediatek:mt6765:-:::::::*
	cpe:2.3:h:mediatek:mt6765t:-:::::::*
	cpe:2.3:h:mediatek:mt6767:-:::::::*
	cpe:2.3:h:mediatek:mt6768:-:::::::*
	cpe:2.3:h:mediatek:mt6769:-:::::::*
	cpe:2.3:h:mediatek:mt6769t:-:::::::*
	cpe:2.3:h:mediatek:mt6769z:-:::::::*
	cpe:2.3:h:mediatek:mt6771:-:::::::*
	cpe:2.3:h:mediatek:mt6775:-:::::::*
	cpe:2.3:h:mediatek:mt6779:-:::::::*
	cpe:2.3:h:mediatek:mt6781:-:::::::*
	cpe:2.3:h:mediatek:mt6783:-:::::::*
	cpe:2.3:h:mediatek:mt6785:-:::::::*
	cpe:2.3:h:mediatek:mt6785t:-:::::::*
	cpe:2.3:h:mediatek:mt6789:-:::::::*
	cpe:2.3:h:mediatek:mt6795:-:::::::*
	cpe:2.3:h:mediatek:mt6797:-:::::::*
	cpe:2.3:h:mediatek:mt6799:-:::::::*
	cpe:2.3:h:mediatek:mt6813:-:::::::*
	cpe:2.3:h:mediatek:mt6815:-:::::::*
	cpe:2.3:h:mediatek:mt6833:-:::::::*
	cpe:2.3:h:mediatek:mt6835:-:::::::*
	cpe:2.3:h:mediatek:mt6853:-:::::::*
	cpe:2.3:h:mediatek:mt6855:-:::::::*
	cpe:2.3:h:mediatek:mt6873:-:::::::*
	cpe:2.3:h:mediatek:mt6875:-:::::::*
	cpe:2.3:h:mediatek:mt6875t:-:::::::*
	cpe:2.3:h:mediatek:mt6877:-:::::::*
	cpe:2.3:h:mediatek:mt6878:-:::::::*
	cpe:2.3:h:mediatek:mt6879:-:::::::*
	cpe:2.3:h:mediatek:mt6883:-:::::::*
	cpe:2.3:h:mediatek:mt6885:-:::::::*
	cpe:2.3:h:mediatek:mt6886:-:::::::*
	cpe:2.3:h:mediatek:mt6889:-:::::::*
	cpe:2.3:h:mediatek:mt6891:-:::::::*
	cpe:2.3:h:mediatek:mt6893:-:::::::*
	cpe:2.3:h:mediatek:mt6895:-:::::::*
	cpe:2.3:h:mediatek:mt6895t:-:::::::*
	cpe:2.3:h:mediatek:mt6896:-:::::::*
	cpe:2.3:h:mediatek:mt6897:-:::::::*
	cpe:2.3:h:mediatek:mt6983:-:::::::*
	cpe:2.3:h:mediatek:mt6985:-:::::::*
cpe:2.3:h:mediatek:mt6989:-:::::::*
cpe:2.3:h:mediatek:mt8666:-:::::::*
cpe:2.3:h:mediatek:mt8666a:-:::::::*
cpe:2.3:h:mediatek:mt8667:-:::::::*
cpe:2.3:h:mediatek:mt8673:-:::::::*
cpe:2.3:h:mediatek:mt8675:-:::::::*
cpe:2.3:h:mediatek:mt8765:-:::::::*
cpe:2.3:h:mediatek:mt8766:-:::::::*
cpe:2.3:h:mediatek:mt8766z:-:::::::*
cpe:2.3:h:mediatek:mt8768:-:::::::*
cpe:2.3:h:mediatek:mt8768a:-:::::::*
cpe:2.3:h:mediatek:mt8768b:-:::::::*
cpe:2.3:h:mediatek:mt8768t:-:::::::*
cpe:2.3:h:mediatek:mt8768z:-:::::::*
cpe:2.3:h:mediatek:mt8781:-:::::::*
cpe:2.3:h:mediatek:mt8786:-:::::::*
cpe:2.3:h:mediatek:mt8788:-:::::::*
cpe:2.3:h:mediatek:mt8788t:-:::::::*
cpe:2.3:h:mediatek:mt8788x:-:::::::*
cpe:2.3:h:mediatek:mt8788z:-:::::::*
cpe:2.3:h:mediatek:mt8791:-:::::::*
cpe:2.3:h:mediatek:mt8791t:-:::::::*
cpe:2.3:h:mediatek:mt8797:-:::::::*
cpe:2.3:h:mediatek:mt8798:-:::::::*

No data.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://corp.mediatek.com/product-security-bulletin/October-2023

History

Sat, 21 Sep 2024 16:30:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}` cvssV3_1 `{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: MediaTek

Published: 2023-10-02T02:05:25.077Z

Updated: 2024-09-21T15:27:05.080Z

Reserved: 2022-10-28T02:03:23.673Z

Link: CVE-2023-20819

Vulnrichment

Updated: 2024-08-02T09:14:40.994Z

NVD

Status : Modified

Published: 2023-10-02T03:15:09.710

Modified: 2024-11-21T07:41:36.283

Link: CVE-2023-20819

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object