CVE-2024-20004: Input Validation
First published: Mon Feb 05 2024(Updated: )
In Modem NL1, there is a possible system crash due to an improper input validation. This could lead to remote denial of service, if NW sent invalid NR RRC Connection Setup message, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01191612; Issue ID: MOLY01195812 (MSV-985).
Credit: security@mediatek.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Any of | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
- agent/references
- agent/first-publish-date
- agent/description
- agent/type
- agent/author
- agent/severity
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/mitre-cve
- source/MITRE
- agent/weakness
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/mediatek
- canonical/mediatek nr15
- canonical/mediatek mt2735
- canonical/mediatek mt6297
- canonical/mediatek mt6833
- canonical/mediatek mt6853
- canonical/mediatek mt6855
- canonical/mediatek mt6873
- canonical/mediatek mt6875
- canonical/mediatek mt6875t
- canonical/mediatek mt6877
- canonical/mediatek mt6880
- canonical/mediatek mt6883
- canonical/mediatek mt6885
- canonical/mediatek mt6889
- canonical/mediatek mt6890
- canonical/mediatek mt6891
- canonical/mediatek mt6893
- canonical/mediatek mt8675
- canonical/mediatek mt8791
- canonical/mediatek mt8791t
- canonical/mediatek mt8797