First published: Mon Oct 07 2024(Updated: )
In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001358; Issue ID: MSV-1599.
Credit: security@mediatek.com
Affected Software | Affected Version | How to fix |
---|---|---|
Android | ||
All of | ||
Any of | ||
Mediatek Linkit Software Development Kit | <=3.3 | |
Android | =13.0 | |
Android | =14.0 | |
Android | =15.0 | |
Any of | ||
Mediatek MT3605 | ||
MediaTek MT6985T | ||
MediaTek MT6989 | ||
MediaTek MT6990 | ||
MediaTek MT7927 | ||
MediaTek MT8183 | ||
Mediatek MT8512 | ||
MediaTek MT8678 | ||
MediaTek MT8695 Firmware | ||
MediaTek MT8698 | ||
MediaTek MT8796 | ||
MediaTek MT8893 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-20103 has a high severity rating due to the potential for remote code execution.
To fix CVE-2024-20103, ensure you apply the security patch ID ALPS09001358 provided by the vendor.
CVE-2024-20103 is characterized as an out of bounds write vulnerability due to improper input validation.
No, CVE-2024-20103 can be exploited remotely without user interaction.
CVE-2024-20103 affects the wlan firmware in Google Android.