cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-20664,https://securityvulnerability.io/vulnerability/CVE-2023-20664,Double Free Vulnerability in MediaTek Products,"A vulnerability exists in MediaTek's gz component that allows for a potential double free condition due to a use after free issue. This vulnerability could be exploited for local privilege escalation, requiring system execution privileges. Importantly, the exploitation does not necessitate user interaction, making it particularly concerning for affected environments. Affected users should apply the available patches promptly to mitigate risks.",MediaTek,"Mt6580, Mt6735, Mt6737, Mt6739, Mt6753, Mt6761, Mt6765, Mt6768, Mt6771, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6877, Mt6879, Mt6883, Mt6885, Mt6889, Mt6893, Mt6895, Mt6983, Mt8168, Mt8185, Mt8188, Mt8321, Mt8362a, Mt8365, Mt8385, Mt8666, Mt8673, Mt8675, Mt8696, Mt8765, Mt8766, Mt8768, Mt8771, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8795t, Mt8797, Mt8798, Mt8871, Mt8891",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-04-06T00:00:00.000Z,0
CVE-2023-20653,https://securityvulnerability.io/vulnerability/CVE-2023-20653,Out of Bounds Write Vulnerability in MediaTek KeyInstall Product,"An out of bounds write vulnerability exists in the KeyInstall product of MediaTek due to a lack of sufficient bounds checking. This flaw could potentially allow an attacker to escalate privileges locally, achieving system execution privileges without the need for user interaction. Users are advised to apply the security patch ALPS07628168 to mitigate the risks associated with this vulnerability.",MediaTek,"Mt6580, Mt6731, Mt6735, Mt6737, Mt6739, Mt6753, Mt6757, Mt6757c, Mt6757cd, Mt6757ch, Mt6761, Mt6762, Mt6763, Mt6765, Mt6768, Mt6769, Mt6771, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6875, Mt6877, Mt6879, Mt6883, Mt6885, Mt6889, Mt6891, Mt6893, Mt6895, Mt6983, Mt8185, Mt8192, Mt8321, Mt8385, Mt8666, Mt8667, Mt8673, Mt8675, Mt8765, Mt8766, Mt8768, Mt8771, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8795t, Mt8797, Mt8798, Mt8871, Mt8891",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-04-06T00:00:00.000Z,0
CVE-2023-20654,https://securityvulnerability.io/vulnerability/CVE-2023-20654,Out of Bounds Write Vulnerability in Keyinstall by MediaTek,"The vulnerability in MediaTek's Keyinstall arises from a missing bounds check, which can result in an out of bounds write. This security flaw may allow an attacker to escalate their privileges to system execution without needing user interaction, potentially compromising vulnerable systems. It is crucial for users and administrators to apply the necessary patches to mitigate this risk, as detailed in the security bulletin from MediaTek.",MediaTek,"MT6580, MT6731, MT6735, MT6737, MT6739, MT6753, MT6757, MT6757C, MT6757CD, MT6757CH, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6889, MT6891, MT6893, MT6895, MT6983, MT8185, MT8192, MT8321, MT8385, MT8666, MT8667, MT8673, MT8675, MT8765, MT8766, MT8768, MT8771, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8795T, MT8797, MT8798, MT8871, MT8891",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-04-06T00:00:00.000Z,0
CVE-2023-20655,https://securityvulnerability.io/vulnerability/CVE-2023-20655,Privilege Escalation Vulnerability in MediaTek mmsdk Product,"A vulnerability exists in the MediaTek mmsdk due to a parcel format mismatch, which might allow local code execution without requiring additional execution privileges or user interaction. This flaw can be exploited by attackers to gain unauthorized access to system resources, posing a significant security risk. Users of affected versions are advised to apply the recommended patches promptly to safeguard their systems.",MediaTek,"MT2715, MT6580, MT6735, MT6737, MT6739, MT6753, MT6761, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8167, MT8167S, MT8168, MT8173, MT8175, MT8185, MT8192, MT8195, MT8321, MT8362A, MT8365, MT8385, MT8395, MT8666, MT8667, MT8673, MT8675, MT8765, MT8766, MT8768, MT8771, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8795T, MT8797, MT8798, MT8871, MT8891",7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-04-06T00:00:00.000Z,0
CVE-2023-20670,https://securityvulnerability.io/vulnerability/CVE-2023-20670,Out of Bounds Write Vulnerability in MediaTek Audio Products,"A vulnerability has been identified in MediaTek audio products that allows for an out of bounds write due to a missing bounds check. This flaw can enable a local attacker to escalate privileges, executing code with system privileges. Exploitation does not require user interaction, which increases the risk of this vulnerability. Affected users and enterprises should ensure they apply available patches to safeguard their systems. For more information, refer to MediaTek's product security bulletin.",MediaTek,"Mt2715, Mt6580, Mt6739, Mt6761, Mt6765, Mt6768, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6877, Mt6879, Mt6883, Mt6885, Mt6889, Mt6893, Mt6895, Mt6983, Mt8167, Mt8188, Mt8195, Mt8321, Mt8365, Mt8385, Mt8675, Mt8696, Mt8765, Mt8766, Mt8768, Mt8771, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8795t, Mt8797, Mt8798, Mt8871, Mt8891",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-04-06T00:00:00.000Z,0
CVE-2023-20652,https://securityvulnerability.io/vulnerability/CVE-2023-20652,Out of Bounds Write Vulnerability in MediaTek KeyInstall Software,"A potential out of bounds write vulnerability exists in MediaTek's KeyInstall software. This issue arises due to a lack of adequate bounds checking, allowing exploitation to occur without user interaction. Successful exploitation could enable a local attacker to escalate their privileges to that of the system. MediaTek has acknowledged this issue and is working on patches to address it.",MediaTek,"Mt6580, Mt6731, Mt6735, Mt6737, Mt6739, Mt6753, Mt6757, Mt6757c, Mt6757cd, Mt6757ch, Mt6761, Mt6762, Mt6763, Mt6765, Mt6768, Mt6769, Mt6771, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6853, Mt6853t, Mt6855, Mt6873, Mt6875, Mt6877, Mt6879, Mt6883, Mt6885, Mt6889, Mt6891, Mt6893, Mt6895, Mt6983, Mt8185, Mt8192, Mt8321, Mt8385, Mt8666, Mt8667, Mt8673, Mt8675, Mt8765, Mt8766, Mt8768, Mt8771, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8795t, Mt8797, Mt8798, Mt8871, Mt8891",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-04-06T00:00:00.000Z,0
CVE-2022-32616,https://securityvulnerability.io/vulnerability/CVE-2022-32616,Out of Bounds Write Vulnerability in MediaTek ISP,"In MediaTek ISP, an out of bounds write vulnerability exists due to uninitialized data. This flaw can potentially allow an attacker to escalate privileges locally, granting them system execution capabilities. Notably, user interaction is not required for exploitation, amplifying the risk associated with this vulnerability. A patch has been issued to address this issue, identified by Patch ID ALPS07341258.",MediaTek,"Mt6983, Mt8871, Mt8891",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-11-08T00:00:00.000Z,0
CVE-2022-32607,https://securityvulnerability.io/vulnerability/CVE-2022-32607,Use After Free Vulnerability in MediaTek aee Leading to Privilege Escalation,"A vulnerability in MediaTek's aee arises from a missing bounds check, leading to a potential use after free scenario. This flaw allows attackers to escalate privileges locally, acquiring System execution rights without requiring any user interaction. Affected users should apply the appropriate security patches to mitigate this risk. Reference: [MediaTek Security Bulletin](https://corp.mediatek.com/product-security-bulletin/November-2022).",MediaTek,"Mt6580, Mt6739, Mt6761, Mt6762, Mt6765, Mt6768, Mt6769, Mt6771, Mt6779, Mt6781, Mt6785, Mt6789, Mt6833, Mt6853, Mt6853t, Mt6873, Mt6875, Mt6877, Mt6879, Mt6883, Mt6885, Mt6889, Mt6891, Mt6893, Mt6895, Mt6983, Mt8167, Mt8167s, Mt8168, Mt8173, Mt8175, Mt8362a, Mt8365, Mt8385, Mt8666, Mt8675, Mt8696, Mt8765, Mt8766, Mt8768, Mt8786, Mt8788, Mt8791, Mt8791t, Mt8795t, Mt8797, Mt8871, Mt8891",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-11-08T00:00:00.000Z,0
CVE-2022-32615,https://securityvulnerability.io/vulnerability/CVE-2022-32615,Out of Bounds Write Vulnerability in MediaTek's ccd Product,"A vulnerability exists in MediaTek’s ccd product that allows for an out of bounds write due to uninitialized data. This flaw can result in local escalation of privileges, enabling an attacker to execute system-level operations. Exploitation does not require user interaction, posing significant risks to affected systems. A patch has been released to address this vulnerability.",MediaTek,"Mt6983, Mt8871, Mt8891",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-11-08T00:00:00.000Z,0