First published: Tue Jul 04 2023(Updated: )
In display, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07671046; Issue ID: ALPS07671046.
Credit: security@mediatek.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | =12.0 | |
Mediatek Mt6580 | ||
Mediatek Mt6739 | ||
Mediatek Mt6761 | ||
Mediatek Mt6765 | ||
Mediatek Mt6768 | ||
Mediatek Mt6771 | ||
Mediatek Mt6779 | ||
Mediatek Mt6785 | ||
Mediatek Mt8168 | ||
Mediatek Mt8781 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-20771 is a vulnerability in display that could lead to local escalation of privilege with system execution privileges.
CVE-2023-20771 has a severity score of 6.4, which is considered medium.
No, user interaction is not needed for exploitation of CVE-2023-20771.
To fix CVE-2023-20771, apply the patch ID ALPS07671046 provided by Google Android or refer to the Mediatek Product Security Bulletin for more information.
You can find more information about CVE-2023-20771 in the Mediatek Product Security Bulletin for July 2023.