Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2023-20802

UNKNOWN
Published 2023-08-07T03:21:42.242Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-20802. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

In imgsys, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07420968; Issue ID: ALPS07420976.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

MediaTek, Inc.

MT6879, MT6895, MT6983, MT8188, MT8195, MT8395, MT8781

Affected Versions:

Android 12.0, 13.0 / IOT-v23.0 (Yocto 4.0)
mediatek

mt6879

Affected Versions:

android_12.0_13.0_IOT_v23.0\/yocto_4.0\/
mediatek

mt6895

Affected Versions:

android_12.0_13.0_IOT_v23.0\/yocto_4.0\/
mediatek

mt6983

Affected Versions:

android_12.0_13.0_IOT_v23.0\/yocto_4.0\/
mediatek

mt8188

Affected Versions:

android_12.0_13.0_IOT_v23.0\/yocto_4.0\/
mediatek

mt8195

Affected Versions:

android_12.0_13.0_IOT_v23.0\/yocto_4.0\/
mediatek

mt8395

Affected Versions:

android_12.0_13.0_IOT_v23.0\/yocto_4.0\/
mediatek

mt8781

Affected Versions:

android_12.0_13.0_IOT_v23.0\/yocto_4.0\/

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-529f-86mv-jvcp

Advisory Details

In imgsys, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07420968; Issue ID: ALPS07420976.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-20802
WEB https://corp.mediatek.com/product-security-bulletin/August-2023

Advisory provided by GitHub Security Advisory Database. Published: August 7, 2023, Modified: April 4, 2024

References

https://corp.mediatek.com/product-security-bulletin/August-2023
Published: 2023-08-07T03:21:42.242Z
Last Modified: 2024-11-07T16:24:43.393Z
Copied to clipboard!