CVE-2024-20003: Input Validation

First published: Mon Feb 05 2024(Updated: )

In Modem NL1, there is a possible system crash due to an improper input validation. This could lead to remote denial of service, if NW sent invalid NR RRC Connection Setup message, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01191612; Issue ID: MOLY01191612 (MSV-981).

Credit: security@mediatek.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/description
• agent/type
• agent/author
• agent/references
• agent/severity
• agent/first-publish-date
• collector/epss-latest
• source/FIRST
• agent/epss
• collector/mitre-cve
• source/MITRE
• agent/weakness
• agent/event
• collector/android-source
• source/Android
• agent/software-canonical-lookup
• agent/last-modified-date
• agent/source
• agent/tags
• agent/softwarecombine
• collector/nvd-api
• source/NVD
• agent/software-canonical-lookup-request
• vendor/google
• canonical/google android
• vendor/mediatek
• canonical/mediatek nr15
• canonical/mediatek mt2735
• canonical/mediatek mt6297
• canonical/mediatek mt6833
• canonical/mediatek mt6853
• canonical/mediatek mt6855
• canonical/mediatek mt6873
• canonical/mediatek mt6875t
• canonical/mediatek mt6877
• canonical/mediatek mt6880
• canonical/mediatek mt6883
• canonical/mediatek mt6885
• canonical/mediatek mt6889
• canonical/mediatek mt6890
• canonical/mediatek mt6891
• canonical/mediatek mt6893
• canonical/mediatek mt8675
• canonical/mediatek mt8791 wifi
• canonical/mediatek mt8791t
• canonical/mediatek mt8797