cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-20108,https://securityvulnerability.io/vulnerability/CVE-2024-20108,Possible Out of Bounds Write Leads to Local Escalation of Privilege,"In atci, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09082988; Issue ID: MSV-1774.",MediaTek,"Mt6580, Mt6739, Mt6761, Mt6765, Mt6768, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6835, Mt6853, Mt6855, Mt6873, Mt6877, Mt6878, Mt6879, Mt6883, Mt6885, Mt6886, Mt6889, Mt6893, Mt6895, Mt6896, Mt6897, Mt6983, Mt6985, Mt6989, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8370, Mt8385, Mt8390, Mt8395, Mt8666, Mt8667, Mt8673, Mt8675, Mt8676, Mt8678, Mt8755, Mt8765, Mt8766, Mt8768, Mt8771, Mt8775, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8792, Mt8795t, Mt8796, Mt8797, Mt8798",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-04T01:48:43.978Z,0
CVE-2023-32871,https://securityvulnerability.io/vulnerability/CVE-2023-32871,Possible Permission Bypass in DA Product Could Lead to Local Escalation of Privilege,"A permission bypass vulnerability has been identified in MediaTek's products caused by an incorrect status check mechanism. This flaw allows an attacker to escalate privileges locally without requiring additional execution privileges or user interaction. Such vulnerabilities pose risks as they could be exploited to increase the privileges of a user or process beyond intended limitations, potentially leading to unauthorized access and control over the affected systems. Users and organizations utilizing MediaTek's products are advised to apply the necessary security patch identified as ALPS08355514 to mitigate this risk.",MediaTek,"Mt2737, Mt6739, Mt6761, Mt6765, Mt6768, Mt6771, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6835, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6877, Mt6879, Mt6880, Mt6883, Mt6885, Mt6886, Mt6889, Mt6890, Mt6893, Mt6895, Mt6897, Mt6980, Mt6983, Mt6985, Mt6989, Mt6990, Mt8167, Mt8167s, Mt8168, Mt8173, Mt8175, Mt8185, Mt8188, Mt8195, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8390, Mt8395, Mt8755, Mt8765, Mt8766, Mt8768, Mt8775, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8797, Mt8798",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-06T02:51:52.075Z,0
CVE-2023-20844,https://securityvulnerability.io/vulnerability/CVE-2023-20844,Out of Bounds Read Vulnerability in MediaTek Products,"A vulnerability exists in the imgsys_cmdq component of certain MediaTek products, which may allow an attacker to read data outside the designated memory bounds. This issue arises from a lack of proper range checking and could potentially lead to local information disclosure. Successful exploitation requires user interaction and system execution privileges, highlighting the need for vigilance when using affected devices. MediaTek has provided a patch to mitigate this vulnerability, and users are encouraged to update their products promptly to safeguard against possible exploits.",MediaTek,"Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",4.2,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20846,https://securityvulnerability.io/vulnerability/CVE-2023-20846,Potential Out of Bounds Read in Mediatek img_sys Command Queue,"The img_sys command queue in Mediatek devices has a vulnerability where there is a possibility of an out-of-bounds read due to missing valid range checks. This flaw may lead to local information disclosure, requiring system execution privileges to exploit. Successful exploitation of this vulnerability necessitates user interaction, emphasizing the importance of maintaining updated systems to prevent potential security risks. For further details, refer to the Mediatek product security bulletin.",MediaTek,"Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",4.2,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20847,https://securityvulnerability.io/vulnerability/CVE-2023-20847,Out of Bounds Read Vulnerability in MediaTek Products,"A vulnerability in imgsys_cmdq has been identified which allows for a potential out of bounds read. This flaw arises from the absence of proper range checking, potentially leading to a local denial of service scenario. Successful exploitation of this vulnerability necessitates user interaction and requires system execution privileges. MediaTek has issued a patch identified as ALPS07354025 to mitigate this issue.",MediaTek,"Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",4.2,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20842,https://securityvulnerability.io/vulnerability/CVE-2023-20842,Out of Bounds Write in Mediatek Product,"A security vulnerability exists within the imgsys_cmdq module of Mediatek products, where a failure to properly validate the range can lead to an out of bounds write. This issue requires local user interaction for exploitation and could enable an attacker to escalate their privileges by obtaining system execution rights. Affected users should ensure that patches or updates are applied promptly to mitigate potential risks. The known patch ID for this vulnerability is ALPS07354259, while the associated issue ID is ALPS07340477.",MediaTek,"Mt2713, Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20849,https://securityvulnerability.io/vulnerability/CVE-2023-20849,Use After Free Vulnerability in MediaTek Software,"A significant vulnerability exists within the MediaTek software due to a missing valid range check in the imgsys_cmdq function. This situation creates a possible use after free scenario, enabling local escalation of privileges for an attacker. The successful exploitation of this vulnerability requires user interaction, emphasizing the need for cautious user behavior. Proper patches have been released to mitigate this issue, and users are encouraged to update their software promptly to safeguard against potential exploits.",MediaTek,"Mt2713, Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20850,https://securityvulnerability.io/vulnerability/CVE-2023-20850,Out of Bounds Write in Mediatek Command System,"The imgsys_cmdq module within Mediatek's architecture suffers from a vulnerability that allows for an out of bounds write due to inadequate range checking. This flaw could potentially be exploited by a local user to escalate privileges, requiring system execution rights for successful attacks. User interaction is necessary to trigger this vulnerability. Affected versions can be patched with the ID ALPS07340433 to mitigate the risk associated with this issue.",MediaTek,"Mt2713, Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20848,https://securityvulnerability.io/vulnerability/CVE-2023-20848,Out of Bounds Read Vulnerability in Mediatek's imgsys_cmdq Component,"In the imgsys_cmdq component, there exists a vulnerability where a lack of valid range checking could result in an out of bounds read. This flaw may allow an attacker to escalate privileges locally, provided they can interact with the affected system. Mitigation efforts are necessary to address this issue, particularly with the provided patch ID ALPS07340433 to safeguard against potential exploitation.",MediaTek,"Mt2713, Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",6.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0
CVE-2023-20843,https://securityvulnerability.io/vulnerability/CVE-2023-20843,Out of Bounds Read Vulnerability in MediaTek Product,"A vulnerability exists in imgsys_cmdq that permits an out of bounds read due to inadequate range checking. This flaw can potentially lead to local information disclosure, but it requires system execution privileges and user interaction for exploitation. Appropriate measures should be taken to mitigate this issue, as highlighted in the MediaTek security bulletin.",MediaTek,"Mt6895, Mt6897, Mt6983, Mt8188, Mt8195, Mt8395, Mt8781",4.2,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-04T03:15:00.000Z,0