CVE-2023-20844

UNKNOWN

Published 2023-09-04T02:27:55.388Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-20844. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354058; Issue ID: ALPS07340121.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

MediaTek, Inc.

MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781

Affected Versions:

Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-5mmx-3rv4-jrg8

Advisory Details

CVSS Scoring

CVSS Score

5.0

CVSS Vector


                                    CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-20844

WEB https://corp.mediatek.com/product-security-bulletin/September-2023

Advisory provided by GitHub Security Advisory Database. Published: September 4, 2023, Modified: April 4, 2024

References

https://corp.mediatek.com/product-security-bulletin/September-2023

Published: 2023-09-04T02:27:55.388Z

Last Modified: 2024-10-08T20:12:52.704Z

Copied to clipboard!

CVE-2023-20844

Expert Analysis

Description

Available Exploits

Related News

Affected Products

MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!