In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00843282; Issue ID: MSV-1535.
History

Mon, 07 Oct 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Mediatek
Mediatek mt2735
Mediatek mt6833
Mediatek mt6853
Mediatek mt6855
Mediatek mt6873
Mediatek mt6875
Mediatek mt6875t
Mediatek mt6877
Mediatek mt6880
Mediatek mt6883
Mediatek mt6885
Mediatek mt6889
Mediatek mt6890
Mediatek mt6891
Mediatek mt6893
Mediatek mt8675
Mediatek mt8771
Mediatek mt8791
Mediatek mt8791t
Mediatek mt8797
CPEs cpe:2.3:h:mediatek:mt2735:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6875t:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6880:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*
Vendors & Products Mediatek
Mediatek mt2735
Mediatek mt6833
Mediatek mt6853
Mediatek mt6855
Mediatek mt6873
Mediatek mt6875
Mediatek mt6875t
Mediatek mt6877
Mediatek mt6880
Mediatek mt6883
Mediatek mt6885
Mediatek mt6889
Mediatek mt6890
Mediatek mt6891
Mediatek mt6893
Mediatek mt8675
Mediatek mt8771
Mediatek mt8791
Mediatek mt8791t
Mediatek mt8797
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 07 Oct 2024 04:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Mon, 07 Oct 2024 03:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-617

Mon, 07 Oct 2024 02:45:00 +0000

Type Values Removed Values Added
Description In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00843282; Issue ID: MSV-1535.
Weaknesses CWE-20
References

cve-icon MITRE

Status: PUBLISHED

Assigner: MediaTek

Published: 2024-10-07T02:35:17.919Z

Updated: 2024-10-07T13:32:50.793Z

Reserved: 2023-11-02T13:35:35.174Z

Link: CVE-2024-20094

cve-icon Vulnrichment

Updated: 2024-10-07T13:32:19.604Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-10-07T03:15:02.823

Modified: 2024-10-07T19:36:42.200

Link: CVE-2024-20094

cve-icon Redhat

No data.