CVE-2022-26443
First published: Mon Aug 01 2022(Updated: )
In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420068; Issue ID: GN20220420068.
Credit: security@mediatek.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mediatek Mt7603 Firmware | =7.6.2.3 | |
| Mediatek Mt7603 | ||
| Mediatek Mt7610 Firmware | =7.6.2.3 | |
| Mediatek Mt7610 | ||
| Mediatek Mt7612 Firmware | =7.6.2.3 | |
| Mediatek Mt7612 | ||
| Mediatek Mt7613 Firmware | =7.6.2.3 | |
| Mediatek Mt7613 | ||
| Mediatek Mt7615 Firmware | =7.6.2.3 | |
| Mediatek Mt7615 | ||
| Mediatek Mt7620 Firmware | =7.6.2.3 | |
| Mediatek Mt7620 | ||
| Mediatek Mt7622 Firmware | =7.6.2.3 | |
| Mediatek Mt7622 | ||
| Mediatek Mt7628 Firmware | =7.6.2.3 | |
| Mediatek Mt7628 | ||
| Mediatek Mt7629 Firmware | =7.6.2.3 | |
| Mediatek Mt7629 | ||
| Mediatek Mt7915 Firmware | =7.6.2.3 | |
| Mediatek Mt7915 | ||
| Mediatek Mt7916 Firmware | =7.6.2.3 | |
| Mediatek Mt7916 | ||
| Mediatek Mt7986 Firmware | =7.6.2.3 | |
| Mediatek Mt7986 | ||
| Mediatek Mt8981 Firmware | =7.6.2.3 | |
| Mediatek Mt8981 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this wifi driver vulnerability?
The vulnerability ID for this wifi driver vulnerability is CVE-2022-26443.
What is the severity of CVE-2022-26443?
The severity of CVE-2022-26443 is medium.
What software is affected by CVE-2022-26443?
The Mediatek MT7603, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915, MT7916, MT7986, and MT8981 firmware versions 7.6.2.3 are affected by CVE-2022-26443.
What is the patch ID for CVE-2022-26443?
The patch ID for CVE-2022-26443 is GN20220420068.
Is user interaction required for exploitation of CVE-2022-26443?
No, user interaction is not needed for exploitation of CVE-2022-26443.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/mediatek
- canonical/mediatek mt7603 firmware
- version/mediatek mt7603 firmware/7.6.2.3
- canonical/mediatek mt7603
- canonical/mediatek mt7610 firmware
- version/mediatek mt7610 firmware/7.6.2.3
- canonical/mediatek mt7610
- canonical/mediatek mt7612 firmware
- version/mediatek mt7612 firmware/7.6.2.3
- canonical/mediatek mt7612
- canonical/mediatek mt7613 firmware
- version/mediatek mt7613 firmware/7.6.2.3
- canonical/mediatek mt7613
- canonical/mediatek mt7615 firmware
- version/mediatek mt7615 firmware/7.6.2.3
- canonical/mediatek mt7615
- canonical/mediatek mt7620 firmware
- version/mediatek mt7620 firmware/7.6.2.3
- canonical/mediatek mt7620
- canonical/mediatek mt7622 firmware
- version/mediatek mt7622 firmware/7.6.2.3
- canonical/mediatek mt7622
- canonical/mediatek mt7628 firmware
- version/mediatek mt7628 firmware/7.6.2.3
- canonical/mediatek mt7628
- canonical/mediatek mt7629 firmware
- version/mediatek mt7629 firmware/7.6.2.3
- canonical/mediatek mt7629
- canonical/mediatek mt7915 firmware
- version/mediatek mt7915 firmware/7.6.2.3
- canonical/mediatek mt7915
- canonical/mediatek mt7916 firmware
- version/mediatek mt7916 firmware/7.6.2.3
- canonical/mediatek mt7916
- canonical/mediatek mt7986 firmware
- version/mediatek mt7986 firmware/7.6.2.3
- canonical/mediatek mt7986
- canonical/mediatek mt8981 firmware
- version/mediatek mt8981 firmware/7.6.2.3
- canonical/mediatek mt8981