cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-20108,https://securityvulnerability.io/vulnerability/CVE-2024-20108,Possible Out of Bounds Write Leads to Local Escalation of Privilege,"In atci, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09082988; Issue ID: MSV-1774.",MediaTek,"Mt6580, Mt6739, Mt6761, Mt6765, Mt6768, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6835, Mt6853, Mt6855, Mt6873, Mt6877, Mt6878, Mt6879, Mt6883, Mt6885, Mt6886, Mt6889, Mt6893, Mt6895, Mt6896, Mt6897, Mt6983, Mt6985, Mt6989, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8370, Mt8385, Mt8390, Mt8395, Mt8666, Mt8667, Mt8673, Mt8675, Mt8676, Mt8678, Mt8755, Mt8765, Mt8766, Mt8768, Mt8771, Mt8775, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8792, Mt8795t, Mt8796, Mt8797, Mt8798",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-04T01:48:43.978Z,0
CVE-2023-32871,https://securityvulnerability.io/vulnerability/CVE-2023-32871,Possible Permission Bypass in DA Product Could Lead to Local Escalation of Privilege,"A permission bypass vulnerability has been identified in MediaTek's products caused by an incorrect status check mechanism. This flaw allows an attacker to escalate privileges locally without requiring additional execution privileges or user interaction. Such vulnerabilities pose risks as they could be exploited to increase the privileges of a user or process beyond intended limitations, potentially leading to unauthorized access and control over the affected systems. Users and organizations utilizing MediaTek's products are advised to apply the necessary security patch identified as ALPS08355514 to mitigate this risk.",MediaTek,"Mt2737, Mt6739, Mt6761, Mt6765, Mt6768, Mt6771, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6835, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6877, Mt6879, Mt6880, Mt6883, Mt6885, Mt6886, Mt6889, Mt6890, Mt6893, Mt6895, Mt6897, Mt6980, Mt6983, Mt6985, Mt6989, Mt6990, Mt8167, Mt8167s, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8390, Mt8395, Mt8755, Mt8765, Mt8766, Mt8768, Mt8775, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8797, Mt8798",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-06T02:51:52.075Z,0
CVE-2024-20050,https://securityvulnerability.io/vulnerability/CVE-2024-20050,Flashc Information Disclosure Vulnerability,"In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541757; Issue ID: ALPS08541757.",MediaTek,"Mt2713, Mt2737, Mt6781, Mt6789, Mt6835, Mt6855, Mt6879, Mt6880, Mt6886, Mt6890, Mt6895, Mt6980, Mt6983, Mt6985, Mt6989, Mt6990, Mt8167, Mt8168, Mt8173, Mt8175, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8390, Mt8395, Mt8666, Mt8667, Mt8673, Mt8765, Mt8766, Mt8768, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8796, Mt8797, Mt8798",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-04-01T03:15:00.000Z,0
CVE-2024-20051,https://securityvulnerability.io/vulnerability/CVE-2024-20051,Possible System Crash Due to Uncaught Exception,"In flashc, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541757; Issue ID: ALPS08541758.",MediaTek,"Mt2713, Mt2737, Mt6781, Mt6789, Mt6835, Mt6855, Mt6879, Mt6880, Mt6886, Mt6890, Mt6895, Mt6980, Mt6983, Mt6985, Mt6989, Mt6990, Mt8167, Mt8168, Mt8173, Mt8175, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8390, Mt8395, Mt8666, Mt8667, Mt8673, Mt8765, Mt8766, Mt8768, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8796, Mt8797, Mt8798",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-04-01T03:15:00.000Z,0
CVE-2024-20040,https://securityvulnerability.io/vulnerability/CVE-2024-20040,Possible Out-of-Bounds Write in WLAN Firmware Could Lead to Remote Escalation of Privilege,"In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08360153 (for MT6XXX chipsets) / WCNCR00363530 (for MT79XX chipsets); Issue ID: MSV-979.",MediaTek,"Mt2713, Mt6580, Mt6761, Mt6762, Mt6768, Mt6781, Mt6789, Mt6833, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6875, Mt6877, Mt6879, Mt6883, Mt6885, Mt6886, Mt6889, Mt6890, Mt6891, Mt6893, Mt6895, Mt6983, Mt6985, Mt6989, Mt6990, Mt7902, Mt7915, Mt7916, Mt7920, Mt7921, Mt7922, Mt7925, Mt7927, Mt7981, Mt7986, Mt8188, Mt8195, Mt8370, Mt8390, Mt8395, Mt8518s, Mt8532, Mt8673, Mt8678, Mt8781, Mt8791t, Mt8792, Mt8796, Mt8797, Mt8798",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-04-01T03:15:00.000Z,0
CVE-2024-20033,https://securityvulnerability.io/vulnerability/CVE-2024-20033,Possible Information Disclosure in NVRAM Due to Missing Bounds Check,"In nvram, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08499945; Issue ID: ALPS08499945.",MediaTek,"Mt2713, Mt6739, Mt6761, Mt6765, Mt6768, Mt6771, Mt6779, Mt6785, Mt6789, Mt6835, Mt6855, Mt6879, Mt6883, Mt6885, Mt6886, Mt6893, Mt6895, Mt6983, Mt6985, Mt8167, Mt8167s, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8370, Mt8385, Mt8390, Mt8395, Mt8666, Mt8667, Mt8673, Mt8675, Mt8676, Mt8678, Mt8755, Mt8765, Mt8766, Mt8768, Mt8775, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8792, Mt8796, Mt8797, Mt8798",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-03-04T02:43:48.493Z,0
CVE-2023-32883,https://securityvulnerability.io/vulnerability/CVE-2023-32883,Out of Bounds Write Vulnerability in MediaTek Engineer Mode,"In MediaTek's Engineer Mode, an out of bounds write vulnerability has been identified due to a missing bounds check. This flaw allows for local escalation of privileges, potentially granting malicious entities access to system execution privileges. Importantly, this vulnerability does not require user interaction for exploitation, making it a significant security concern. MediaTek has released a patch identified as ALPS08282249 to address this issue. It is crucial for users of affected MediaTek products to apply the latest updates to mitigate potential risks associated with this vulnerability.",MediaTek,"MT2713, MT6580, MT6739, MT6761, MT6762, MT6765, MT6768, MT6769, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT8167, MT8167S, MT8168, MT8173, MT8175, MT8188, MT8195, MT8321, MT8362A, MT8365, MT8385, MT8390, MT8395, MT8666, MT8667, MT8673, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791T, MT8797, MT8798",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2024-01-02T03:15:00.000Z,0
CVE-2023-32884,https://securityvulnerability.io/vulnerability/CVE-2023-32884,Information Disclosure Vulnerability in MediaTek NetDagent,"A vulnerability exists in MediaTek's NetDagent due to improper bounds checking, leading to possible information disclosure. This issue may allow an attacker to escalate privileges locally with System execution rights. Exploitation of this vulnerability does not require user interaction, thus posing a significant threat to system integrity and user data. Affected versions have been patched under Patch ID ALPS07944011 to address this security concern.",MediaTek,"MT2713, MT6580, MT6739, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6983, MT6985, MT8167, MT8167S, MT8168, MT8173, MT8175, MT8188, MT8192, MT8195, MT8195Z, MT8321, MT8362A, MT8365, MT8385, MT8395, MT8666, MT8667, MT8673, MT8696, MT8755, MT8765, MT8766, MT8768, MT8771, MT8775, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8795T, MT8797, MT8798, MT8871",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2024-01-02T03:15:00.000Z,0
CVE-2023-32847,https://securityvulnerability.io/vulnerability/CVE-2023-32847,Out of Bounds Write Vulnerability in MediaTek Audio Systems,"This vulnerability in MediaTek audio systems occurs due to a missing bounds check, allowing a potential out of bounds write. Exploitation requires user interaction and can lead to a local escalation of privilege without the need for additional execution privileges. Mitigation strategies should be implemented promptly to enhance security against this vulnerability.",MediaTek,"MT2713, MT6580, MT6739, MT6761, MT6762, MT6765, MT6779, MT6785, MT6789, MT6833, MT6835, MT6853, MT6853T, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6895, MT6983, MT6985, MT8167, MT8167S, MT8168, MT8175, MT8188, MT8195, MT8321, MT8362A, MT8365, MT8385, MT8390, MT8395, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791T, MT8797, MT8798",7.8,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2023-12-04T04:15:00.000Z,0
CVE-2023-32826,https://securityvulnerability.io/vulnerability/CVE-2023-32826,Out of Bounds Write Vulnerability in MediaTek Camera Middleware,"A vulnerability in MediaTek's camera middleware allows for an out-of-bounds write due to insufficient input validation. This security flaw can enable an attacker to escalate privileges locally, granting system execution capabilities. Importantly, the exploitation of this vulnerability does not require any user interaction, making it a serious concern for users of the affected products. Affected users are advised to apply the latest patches to mitigate potential risks.",MediaTek,"Mt6879, Mt6886, Mt6895, Mt6983, Mt6985, Mt6989, Mt8167, Mt8167s, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8390, Mt8395, Mt8666, Mt8673, Mt8675, Mt8765, Mt8766, Mt8768, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8797, Mt8798",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-10-02T03:15:00.000Z,0
CVE-2023-32827,https://securityvulnerability.io/vulnerability/CVE-2023-32827,Out of Bounds Write Vulnerability in MediaTek Camera Middleware,"A vulnerability exists in MediaTek's camera middleware that can result in an out of bounds write due to insufficient input validation. This flaw may allow attackers to escalate privileges locally, granting them system execution capabilities. Notably, exploitation does not require user interaction, making the vulnerability particularly concerning for system security. It's crucial for users and organizations leveraging MediaTek technology to apply the necessary patches to mitigate potential risks.",MediaTek,"Mt6879, Mt6886, Mt6895, Mt6983, Mt6985, Mt6989, Mt8167, Mt8167s, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8390, Mt8395, Mt8666, Mt8673, Mt8675, Mt8765, Mt8766, Mt8768, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8797, Mt8798",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-10-02T03:15:00.000Z,0
CVE-2023-20821,https://securityvulnerability.io/vulnerability/CVE-2023-20821,Out of Bounds Write Vulnerability in MediaTek NVRAM,"A vulnerability exists in MediaTek's NVRAM that allows for an out of bounds write due to a lack of sufficient bounds checking. This weakness could enable an attacker to perform local privilege escalation, potentially allowing unauthorized access to System execution privileges. Notably, user interaction is not required for the exploitation of this flaw, posing a risk in environments where the affected systems are utilized.",MediaTek,"Mt2713, Mt2735, Mt6833, Mt6835, Mt6853, Mt6855, Mt6873, Mt6875, Mt6877, Mt6879, Mt6880, Mt6883, Mt6885, Mt6886, Mt6889, Mt6890, Mt6891, Mt6893, Mt6895, Mt6980, Mt6983, Mt6985, Mt6990, Mt8167, Mt8167s, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8395, Mt8666, Mt8673, Mt8675, Mt8765, Mt8766, Mt8768, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8797",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20800,https://securityvulnerability.io/vulnerability/CVE-2023-20800,Local Privilege Escalation Vulnerability in imgsys by MediaTek,"A potential system crash has been identified within imgsys due to a missing pointer check. This issue enables local privilege escalation, which requires user interaction for exploitation. System execution privileges could be compromised, allowing an attacker to gain elevated access. Affected users should apply patches, and it is advisable to monitor security bulletins for updates.",MediaTek,"Mt6879, Mt6895, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-08-07T04:15:00.000Z,0
CVE-2023-20790,https://securityvulnerability.io/vulnerability/CVE-2023-20790,Out of Bounds Write Vulnerability in NVRAM by MediaTek,"A potential out of bounds write vulnerability exists in the NVRAM component of MediaTek products. This flaw arises from a missing bounds check, which can lead to local information disclosure, necessitating system execution privileges for exploitation. Notably, user interaction is not required for the attack, allowing it to be executed without prior consent from the user. A patch has been issued to address this vulnerability, emphasizing the importance of maintaining updated software to safeguard against potential exploits.",MediaTek,"Mt2713, Mt2735, Mt2737, Mt6739, Mt6761, Mt6762, Mt6763, Mt6765, Mt6768, Mt6769, Mt6771, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6835, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6875, Mt6877, Mt6879, Mt6880, Mt6883, Mt6885, Mt6886, Mt6889, Mt6890, Mt6891, Mt6893, Mt6895, Mt6980, Mt6983, Mt6985, Mt6990, Mt8167, Mt8167s, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8395, Mt8666, Mt8667, Mt8673, Mt8675, Mt8765, Mt8766, Mt8768, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8797",4.4,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-08-07T04:15:00.000Z,0
CVE-2023-20802,https://securityvulnerability.io/vulnerability/CVE-2023-20802,Memory Corruption Vulnerability in Mediatek ImgSys Product,"A memory corruption issue in Mediatek's ImgSys arises from improper input validation, potentially allowing local users to escalate their privileges to system level. Exploitation of this vulnerability requires user interaction, emphasizing the need for users to remain vigilant. Patches and updates, identified by Patch ID ALPS07420968 and Issue ID ALPS07420976, have been released to address the concern. Users are encouraged to apply these patches immediately to mitigate any potential risks.",MediaTek,"Mt6879, Mt6895, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-08-07T04:15:00.000Z,0
CVE-2023-20801,https://securityvulnerability.io/vulnerability/CVE-2023-20801,Use After Free Vulnerability in Mediatek ImgSys Component,"A vulnerability exists in the ImgSys component of Mediatek's software due to a race condition, leading to a possible use after free situation. Attackers could exploit this flaw to escalate privileges locally, allowing them to execute system-level operations without user interaction. A patch has been released under ID ALPS07420968 to mitigate the risks associated with this vulnerability.",MediaTek,"Mt6879, Mt6895, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.4,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-08-07T04:15:00.000Z,0
CVE-2023-20688,https://securityvulnerability.io/vulnerability/CVE-2023-20688,Out of Bounds Read Vulnerability in MediaTek Products,"This vulnerability involves a possible out of bounds read due to a missing bounds check in certain MediaTek products. If exploited, it may allow local information disclosure while requiring system execution privileges. Notably, user interaction is not necessary for this exploitation to occur. Affected products should be patched as per Patch ID: ALPS07441821 to mitigate potential risks.",MediaTek,"Mt2715, Mt6580, Mt6731, Mt6735, Mt6737, Mt6739, Mt6753, Mt6757, Mt6757c, Mt6757cd, Mt6757ch, Mt6761, Mt6762, Mt6763, Mt6765, Mt6768, Mt6769, Mt6771, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6875, Mt6877, Mt6879, Mt6883, Mt6885, Mt6889, Mt6891, Mt6893, Mt6895, Mt6983, Mt8167, Mt8168, Mt8169, Mt8173, Mt8175, Mt8183, Mt8185, Mt8188, Mt8192, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8390, Mt8395, Mt8666, Mt8673, Mt8675, Mt8696, Mt8765, Mt8766, Mt8768, Mt8771, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8795t, Mt8797, Mt8798, Mt8891",4.4,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-04-06T00:00:00.000Z,0