Latest mediatek mt8173 Vulnerabilities

CVE-2024-20009
In alac decoder, there is a possible out of bounds write due to an incorrect error handling. This could lead to remote escalation of privilege with no additional execution privileges needed. User inte...
Google Android
Google Android=12.0
Google Android=13.0
Google Android=14.0
Mediatek Mt6580
Mediatek Mt6739
and 31 more
CVE-2024-20011
In alac decoder, there is a possible information disclosure due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction ...
Google Android
Google Android=11.0
Google Android=12.0
Google Android=13.0
Mediatek Mt6985
Mediatek Mt8127
and 15 more
CVE-2023-32826
In camera middleware, there is a possible out of bounds write due to a missing input validation. This could lead to local escalation of privilege with System execution privileges needed. User interact...
Google Android=12.0
Google Android=13.0
Mediatek Mt6879
Mediatek Mt6886
Mediatek Mt6895
Mediatek Mt6983
and 39 more
CVE-2023-32827
In camera middleware, there is a possible out of bounds write due to a missing input validation. This could lead to local escalation of privilege with System execution privileges needed. User interact...
Google Android=12.0
Google Android=13.0
Mediatek Mt6879
Mediatek Mt6886
Mediatek Mt6895
Mediatek Mt6983
and 39 more
CVE-2023-32810
In bluetooth driver, there is a possible out of bounds read due to improper input validation. This could lead to local information leak with System execution privileges needed. User interaction is not...
Linuxfoundation Yocto=3.1
Linuxfoundation Yocto=3.3
Linuxfoundation Yocto=4.0
Google Android=12.0
Google Android=13.0
Linux Linux kernel=4.19
and 50 more
CVE-2023-32807
In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is n...
Linuxfoundation Yocto=4.0
Mediatek Iot Yocto=23.0
Google Android=13.0
Mediatek Mt6779
Google Android
Google Android
and 30 more
CVE-2023-20838
In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for explo...
Linuxfoundation Yocto=3.1
Linuxfoundation Yocto=3.3
Linuxfoundation Yocto=4.0
Google Android=12.0
Google Android=13.0
Linux Linux kernel=4.19
and 50 more
CVE-2023-20830
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ...
Linuxfoundation Yocto=2.6
Rdkcentral Rdk-b=2022q3
Google Android=12.0
Google Android=13.0
Openwrt Openwrt=19.07.0
Openwrt Openwrt=21.02.0
and 46 more
CVE-2023-20821
In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not neede...
Linuxfoundation Yocto=2.6
Rdkcentral Rdk-b=2022q3
Google Android=11.0
Google Android=12.0
Google Android=13.0
Openwrt Openwrt=19.07.0
and 65 more
CVE-2023-20790
In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed...
Linuxfoundation Yocto=2.6
Linuxfoundation Yocto=3.3
Rdkcentral Rdk-b=2022q3
Google Android=12.0
Google Android=13.0
OpenWrt OpenWrt=19.07.0
and 65 more
CVE-2023-20766
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ...
Google Android=11.0
Google Android=12.0
Google Android=13.0
Mediatek Mt6580
Mediatek Mt6735
Mediatek Mt6739
and 49 more
CVE-2023-20746
In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ex...
Linuxfoundation Iot-yocto=22.2
Linuxfoundation Yocto=4.0
Google Android=12.0
Google Android=13.0
Mediatek Mt6789
Mediatek Mt6855
and 18 more
CVE-2023-20740
In vcu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploit...
Linuxfoundation Iot-yocto=22.2
Linuxfoundation Yocto=4.0
Google Android=12.0
Mediatek Mt6768
Mediatek Mt6769
Mediatek Mt6779
and 33 more
CVE-2023-20731
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed f...
Linuxfoundation Yocto=3.1
Linuxfoundation Yocto=3.3
Linuxfoundation Yocto=4.0
Google Android=12.0
Google Android=13.0
Mediatek Mt6761
and 43 more
CVE-2023-20732
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed f...
Linuxfoundation Yocto=3.1
Linuxfoundation Yocto=3.3
Linuxfoundation Yocto=4.0
Google Android=12.0
Google Android=13.0
Mediatek Mt6761
and 43 more
CVE-2023-20688
In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed ...
Google Android=11.0
Google Android=12.0
Google Android=13.0
Mediatek Mt2715
Mediatek Mt6580
Mediatek Mt6731
and 68 more
CVE-2023-20655
In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution privileges needed. User interaction is not n...
Google Android
Google Android=10.0
Google Android=11.0
Google Android=12.0
Google Android=13.0
Mediatek Mt2715
and 58 more
CVE-2023-20623
In ion, there is a possible escalation of privilege due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not ne...
Google Android
Google Android=10.0
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6735
and 36 more
CVE-2022-32640
In meta wifi, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not n...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6731
Mediatek Mt6735
Mediatek Mt6737
and 52 more
CVE-2022-32638
In isp, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ex...
Google Android=11.0
Google Android=12.0
Google Android=13.0
Mediatek Mt6781
Mediatek Mt6833
Mediatek Mt6853
and 26 more
CVE-2022-32641
In meta wifi, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not ne...
Google Android=11.0
Google Android=12.0
Google Android=13.0
Mediatek Mt6580
Mediatek Mt6731
Mediatek Mt6735
and 53 more
CVE-2022-32607
In aee, there is a possible use after free due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for e...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6762
and 44 more
CVE-2022-26468
In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with...
Google Android=11.0
Google Android=12.0
Mediatek Mt6735
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6763
and 40 more
CVE-2022-26469
In MtkEmail, there is a possible escalation of privilege due to fragment injection. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6735
Mediatek Mt6737
Mediatek Mt6739
and 38 more
CVE-2022-26447
In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not ...
Google Android
Google Android=10.0
Google Android=11.0
Google Android=12.0
Yoctoproject Yocto=3.1
Mediatek Mt6580
and 24 more
CVE-2022-26429
In cta, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges ...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6735
Mediatek Mt6739
Mediatek Mt6757
and 37 more
CVE-2022-26433
In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ...
Google Android=11.0
Google Android=12.0
Yoctoproject Yocto=3.1
Yoctoproject Yocto=3.3
Mediatek Mt6833
Mediatek Mt6853
and 28 more
CVE-2022-26434
In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not nee...
Google Android=11.0
Google Android=12.0
Yoctoproject Yocto=3.1
Yoctoproject Yocto=3.3
Mediatek Mt6833
Mediatek Mt6853
and 28 more
CVE-2022-26428
In video codec, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ...
Google Android=11.0
Google Android=12.0
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6765
Mediatek Mt6771
and 7 more
CVE-2022-26435
In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ...
Google Android=11.0
Google Android=12.0
Yoctoproject Yocto=3.1
Yoctoproject Yocto=3.3
Mediatek Mt6833
Mediatek Mt6853
and 28 more
CVE-2022-21776
In MDP, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploit...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6765
and 39 more
CVE-2022-21777
In Autoboot, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction ...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6735
Mediatek Mt6739
Mediatek Mt6761
and 37 more
CVE-2022-21775
In sched driver, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed fo...
Google Android=11.0
Google Android=12.0
Mediatek Mt2601
Mediatek Mt6761
Mediatek Mt6762
Mediatek Mt6763
and 41 more
CVE-2022-21759
In power service, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is n...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6735
Mediatek Mt6739
Mediatek Mt6761
and 37 more
CVE-2022-21747
In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed f...
Google Android=9.0
Google Android=10.0
Google Android=11.0
Google Android=12.0
Mediatek Mt6771
Mediatek Mt6779
and 20 more
CVE-2022-20104
In aee daemon, there is a possible information disclosure due to improper access control. This could lead to local information disclosure with no additional execution privileges needed. User interacti...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6762
and 40 more
CVE-2022-20111
In ion, there is a possible use after free due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee...
Google Android=9.0
Google Android=10.0
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6735
and 50 more
CVE-2022-21743
In ion, there is a possible use after free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed f...
Google Android=9.0
Google Android=10.0
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6735
and 50 more
CVE-2022-20103
In aee daemon, there is a possible information disclosure due to symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is n...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6762
and 40 more
CVE-2022-20101
In aee daemon, there is a possible information disclosure due to a path traversal. This could lead to local information disclosure with no additional execution privileges needed. User interaction is n...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6762
and 40 more
CVE-2022-20102
In aee daemon, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with System execution privileges needed. User interaction i...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6762
and 40 more
CVE-2022-20091
In aee driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6731
Mediatek Mt6739
Mediatek Mt6761
and 41 more
CVE-2022-20088
In aee driver, there is a possible reference count mistake due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction i...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6731
Mediatek Mt6739
Mediatek Mt6761
and 41 more
CVE-2022-20100
In aee daemon, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with System execution privileges needed. User interaction i...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6762
and 40 more
CVE-2022-20090
In aee driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6731
Mediatek Mt6739
Mediatek Mt6761
and 41 more
CVE-2022-20098
In aee daemon, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with System execution privileges needed. User interaction i...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6762
and 40 more
CVE-2022-20099
In aee daemon, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is n...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6739
Mediatek Mt6761
Mediatek Mt6762
and 40 more
CVE-2022-20085
In netdiag, there is a possible symbolic link following due to an improper link resolution. This could lead to local escalation of privilege with System execution privileges needed. User interaction i...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6731
Mediatek Mt6735
Mediatek Mt6750s
and 48 more
CVE-2022-20092
In alac decoder, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...
Google Android=11.0
Google Android=12.0
Mediatek Mt6761
Mediatek Mt6768
Mediatek Mt6779
Mediatek Mt6785
and 19 more
CVE-2022-20089
In aee driver, there is a possible memory corruption due to active debug code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ...
Google Android=11.0
Google Android=12.0
Mediatek Mt6580
Mediatek Mt6731
Mediatek Mt6739
Mediatek Mt6761
and 42 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203