In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998892; Issue ID: MSV-1601.
Metrics
Affected Vendors & Products
References
History
Thu, 10 Oct 2024 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google android Mediatek Mediatek mt3605 Mediatek mt6985 Mediatek mt6989 Mediatek mt6990 Mediatek mt7927 Mediatek mt8678 Mediatek mt8796 Mediatek mt8893 |
|
CPEs | cpe:2.3:h:mediatek:mt3605:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7927:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Google
Google android Mediatek Mediatek mt3605 Mediatek mt6985 Mediatek mt6989 Mediatek mt6990 Mediatek mt7927 Mediatek mt8678 Mediatek mt8796 Mediatek mt8893 |
|
Metrics |
cvssV3_1
|
Mon, 07 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Mon, 07 Oct 2024 02:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998892; Issue ID: MSV-1601. | |
Weaknesses | CWE-125 | |
References |
|
MITRE
Status: PUBLISHED
Assigner: MediaTek
Published: 2024-10-07T02:35:28.279Z
Updated: 2024-10-07T13:24:26.927Z
Reserved: 2023-11-02T13:35:35.175Z
Link: CVE-2024-20102
Vulnrichment
Updated: 2024-10-07T13:24:06.742Z
NVD
Status : Analyzed
Published: 2024-10-07T03:15:03.427
Modified: 2024-10-10T18:20:31.820
Link: CVE-2024-20102
Redhat
No data.