CVE-2022-32605
First published: Tue Nov 08 2022(Updated: )
In isp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07213898; Issue ID: ALPS07213898.
Credit: security@mediatek.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | =12.0 | |
| MediaTek MT6879 | ||
| MediaTek MT6895 | ||
| MediaTek MT6983 | ||
| All of | ||
| Android | =12.0 | |
| Any of | ||
| MediaTek MT6879 | ||
| MediaTek MT6895 | ||
| MediaTek MT6983 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-32605?
The severity of CVE-2022-32605 is high due to the potential for local escalation of privilege.
How do I fix CVE-2022-32605?
To fix CVE-2022-32605, apply the available patch ID ALPS07213898.
Who is affected by CVE-2022-32605?
CVE-2022-32605 affects devices running Android 12.0.
Can CVE-2022-32605 be exploited without user interaction?
Yes, CVE-2022-32605 can be exploited without any user interaction required.
What type of vulnerability is CVE-2022-32605?
CVE-2022-32605 is an out of bounds write vulnerability due to an incorrect bounds check.
- agent/type
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/first-publish-date
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/google
- canonical/android
- version/android/12.0
- vendor/mediatek
- canonical/mediatek mt6879
- canonical/mediatek mt6895
- canonical/mediatek mt6983