cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-20842,https://securityvulnerability.io/vulnerability/CVE-2023-20842,Out of Bounds Write in Mediatek Product,"A security vulnerability exists within the imgsys_cmdq module of Mediatek products, where a failure to properly validate the range can lead to an out of bounds write. This issue requires local user interaction for exploitation and could enable an attacker to escalate their privileges by obtaining system execution rights. Affected users should ensure that patches or updates are applied promptly to mitigate potential risks. The known patch ID for this vulnerability is ALPS07354259, while the associated issue ID is ALPS07340477.",MediaTek,"Mt2713, Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20848,https://securityvulnerability.io/vulnerability/CVE-2023-20848,Out of Bounds Read Vulnerability in Mediatek's imgsys_cmdq Component,"In the imgsys_cmdq component, there exists a vulnerability where a lack of valid range checking could result in an out of bounds read. This flaw may allow an attacker to escalate privileges locally, provided they can interact with the affected system. Mitigation efforts are necessary to address this issue, particularly with the provided patch ID ALPS07340433 to safeguard against potential exploitation.",MediaTek,"Mt2713, Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20849,https://securityvulnerability.io/vulnerability/CVE-2023-20849,Use After Free Vulnerability in MediaTek Software,"A significant vulnerability exists within the MediaTek software due to a missing valid range check in the imgsys_cmdq function. This situation creates a possible use after free scenario, enabling local escalation of privileges for an attacker. The successful exploitation of this vulnerability requires user interaction, emphasizing the need for cautious user behavior. Proper patches have been released to mitigate this issue, and users are encouraged to update their software promptly to safeguard against potential exploits.",MediaTek,"Mt2713, Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20850,https://securityvulnerability.io/vulnerability/CVE-2023-20850,Out of Bounds Write in Mediatek Command System,"The imgsys_cmdq module within Mediatek's architecture suffers from a vulnerability that allows for an out of bounds write due to inadequate range checking. This flaw could potentially be exploited by a local user to escalate privileges, requiring system execution rights for successful attacks. User interaction is necessary to trigger this vulnerability. Affected versions can be patched with the ID ALPS07340433 to mitigate the risk associated with this issue.",MediaTek,"Mt2713, Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0