CVE-2022-26438
First published: Mon Aug 01 2022(Updated: )
In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420013; Issue ID: GN20220420013.
Credit: security@mediatek.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MediaTek MT7603 Firmware | =7.6.2.3 | |
| MediaTek MT7603 Firmware | ||
| MediaTek MT7610 Firmware | =7.6.2.3 | |
| MediaTek MT7610 Firmware | ||
| MediaTek MT7612 firmware | =7.6.2.3 | |
| MediaTek MT7612 firmware | ||
| MediaTek MT7613 Firmware | =7.6.2.3 | |
| MediaTek MT7613 | ||
| MediaTek MT7615 Firmware | =7.6.2.3 | |
| MediaTek MT7615 Firmware | ||
| Mediatek MT7620N Firmware | =7.6.2.3 | |
| Mediatek MT7620N Firmware | ||
| MediaTek MT7622 | =7.6.2.3 | |
| MediaTek MT7622 Firmware | ||
| Mediatek MT7628 Firmware | =7.6.2.3 | |
| MediaTek MT7628 | ||
| MediaTek MT7629 | =7.6.2.3 | |
| MediaTek MT7629 Firmware | ||
| mediatek mt7915 firmware | =7.6.2.3 | |
| mediatek mt7915 firmware | ||
| MediaTek MT7916 | =7.6.2.3 | |
| MediaTek MT7916 Firmware | ||
| MediaTek MT7986 Firmware | =7.6.2.3 | |
| MediaTek MT7986 | ||
| MediaTek MT8981 Firmware | =7.6.2.3 | |
| MediaTek MT8981 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2022-26438.
What is the severity of CVE-2022-26438?
The severity of CVE-2022-26438 is medium with a severity value of 6.7.
Is user interaction required for exploitation of CVE-2022-26438?
No, user interaction is not needed for exploitation of CVE-2022-26438.
How can I fix CVE-2022-26438?
To fix CVE-2022-26438, apply the patch with Patch ID GN20220420013.
Where can I find more information about CVE-2022-26438?
More information about CVE-2022-26438 can be found at the following reference: [link](https://corp.mediatek.com/product-security-bulletin/August-2022).
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mediatek
- canonical/mediatek mt7603 firmware
- version/mediatek mt7603 firmware/7.6.2.3
- canonical/mediatek mt7610 firmware
- version/mediatek mt7610 firmware/7.6.2.3
- canonical/mediatek mt7612 firmware
- version/mediatek mt7612 firmware/7.6.2.3
- canonical/mediatek mt7613 firmware
- version/mediatek mt7613 firmware/7.6.2.3
- canonical/mediatek mt7613
- canonical/mediatek mt7615 firmware
- version/mediatek mt7615 firmware/7.6.2.3
- canonical/mediatek mt7620n firmware
- version/mediatek mt7620n firmware/7.6.2.3
- canonical/mediatek mt7622
- version/mediatek mt7622/7.6.2.3
- canonical/mediatek mt7622 firmware
- canonical/mediatek mt7628 firmware
- version/mediatek mt7628 firmware/7.6.2.3
- canonical/mediatek mt7628
- canonical/mediatek mt7629
- version/mediatek mt7629/7.6.2.3
- canonical/mediatek mt7629 firmware
- canonical/mediatek mt7915 firmware
- version/mediatek mt7915 firmware/7.6.2.3
- canonical/mediatek mt7916
- version/mediatek mt7916/7.6.2.3
- canonical/mediatek mt7916 firmware
- canonical/mediatek mt7986 firmware
- version/mediatek mt7986 firmware/7.6.2.3
- canonical/mediatek mt7986
- canonical/mediatek mt8981 firmware
- version/mediatek mt8981 firmware/7.6.2.3