First published: Thu Apr 06 2023(Updated: )
In adsp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664785; Issue ID: ALPS07664785.
Credit: security@mediatek.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | =11.0 | |
Google Android | =12.0 | |
Google Android | =13.0 | |
Mediatek Mt6779 | ||
Mediatek Mt6781 | ||
Mediatek Mt6785 | ||
Mediatek Mt6833 | ||
Mediatek Mt6853 | ||
Mediatek Mt6873 | ||
Mediatek Mt6877 | ||
Mediatek Mt6879 | ||
Mediatek Mt6885 | ||
Mediatek Mt6893 | ||
Mediatek Mt6895 | ||
Mediatek Mt6983 | ||
Mediatek Mt8365 | ||
Mediatek Mt8695 | ||
Mediatek Mt8771 | ||
Mediatek Mt8781 | ||
Mediatek Mt8791 | ||
Mediatek Mt8791t | ||
Mediatek Mt8795t | ||
Mediatek Mt8797 | ||
Mediatek Mt8798 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this adsp vulnerability is CVE-2023-20680.
The severity of CVE-2023-20680 is medium.
This vulnerability in adsp can be exploited without user interaction.
The required privilege level for exploitation of CVE-2023-20680 in adsp is System execution.
You can patch CVE-2023-20680 in adsp by applying the provided Patch ID: ALPS07664785.