First published: Thu Apr 06 2023(Updated: )
In adsp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07696134; Issue ID: ALPS07696134.
Credit: security@mediatek.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | =12.0 | |
Google Android | =13.0 | |
Mediatek Mt6886 | ||
Mediatek Mt6895 | ||
Mediatek Mt6983 | ||
Mediatek Mt6985 | ||
Mediatek Mt8365 | ||
Mediatek Mt8771 | ||
Mediatek Mt8781 | ||
Mediatek Mt8781wifi | ||
Mediatek Mt8791 | ||
Mediatek Mt8791t | ||
Mediatek Mt8791wifi | ||
Mediatek Mt8795t | ||
Mediatek Mt8797 | ||
Mediatek Mt8797wifi | ||
Mediatek Mt8798 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-20681.
The severity of CVE-2023-20681 is medium.
Google Android versions 12.0 and 13.0 are affected by CVE-2023-20681.
The patch ID for CVE-2023-20681 is ALPS07696134.
No, user interaction is not needed for the exploitation of CVE-2023-20681.