CVE-2024-20089
First published: Mon Sep 02 2024(Updated: )
In wlan, there is a possible denial of service due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08861558; Issue ID: MSV-1526.
Credit: security@mediatek.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Any of | ||
| Yocto Project | =2.6 | |
| Yocto Project | =3.3 | |
| Yocto Project | =4.0 | |
| RDK Central RDKB | =2022q3 | |
| Android | =13.0 | |
| Android | =14.0 | |
| Any of | ||
| MediaTek MT6835 | ||
| MediaTek MT6878 | ||
| MediaTek MT6886 | ||
| MediaTek MT6897 | ||
| MediaTek MT6980D | ||
| MediaTek MT6985T | ||
| MediaTek MT6989 | ||
| MediaTek MT6990 | ||
| MediaTek MT8678 | ||
| MediaTek MT8775 | ||
| MediaTek MT8792 | ||
| MediaTek MT8796 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-20089?
CVE-2024-20089 has a moderate severity rating due to its potential to cause a denial of service.
How do I fix CVE-2024-20089?
To fix CVE-2024-20089, apply the patch identified as ALPS08861558 provided by the affected software vendor.
What systems are affected by CVE-2024-20089?
CVE-2024-20089 affects specific versions of Yocto, RDK Central RDKB, and Google Android.
Is user interaction required to exploit CVE-2024-20089?
No, user interaction is not needed for the exploitation of CVE-2024-20089.
Can CVE-2024-20089 be exploited remotely?
Yes, CVE-2024-20089 can be exploited remotely, leading to a denial of service.
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- agent/weakness
- agent/severity
- agent/event
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/linuxfoundation
- canonical/yocto project
- version/yocto project/2.6
- version/yocto project/3.3
- version/yocto project/4.0
- vendor/rdkcentral
- canonical/rdk central rdkb
- version/rdk central rdkb/2022q3
- vendor/google
- canonical/android
- version/android/13.0
- version/android/14.0
- vendor/mediatek
- canonical/mediatek mt6835
- canonical/mediatek mt6878
- canonical/mediatek mt6886
- canonical/mediatek mt6897
- canonical/mediatek mt6980d
- canonical/mediatek mt6985t
- canonical/mediatek mt6989
- canonical/mediatek mt6990
- canonical/mediatek mt8678
- canonical/mediatek mt8775
- canonical/mediatek mt8792
- canonical/mediatek mt8796