First published: Tue Nov 08 2022(Updated: )
In isp, there is a possible out of bounds write due to uninitialized data. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07341258; Issue ID: ALPS07341258.
Credit: security@mediatek.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | =12.0 | |
Mediatek Mt6983 | ||
Mediatek Mt8871 | ||
Mediatek Mt8891 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-32616 is medium with a CVSS score of 6.7.
CVE-2022-32616 could lead to local escalation of privilege with system execution privileges needed on Google Android 12.0.
No, Mediatek Mt6983 is not vulnerable to CVE-2022-32616.
The patch ID for CVE-2022-32616 is ALPS07341258 and the issue ID is also ALPS07341258.
You can find more information about CVE-2022-32616 at the following link: https://corp.mediatek.com/product-security-bulletin/November-2022