Vulnerability Details CVE-2021-32485
In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500621; Issue ID: ALPS04964926.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.041
EPSS Ranking 87.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
Products affected by CVE-2021-32485
-
cpe:2.3:h:mediatek:mt6739:-
-
cpe:2.3:h:mediatek:mt6761:-
-
cpe:2.3:h:mediatek:mt6762:-
-
cpe:2.3:h:mediatek:mt6762d:-
-
cpe:2.3:h:mediatek:mt6762m:-
-
cpe:2.3:h:mediatek:mt6763:-
-
cpe:2.3:h:mediatek:mt6765:-
-
cpe:2.3:h:mediatek:mt6765t:-
-
cpe:2.3:h:mediatek:mt6767:-
-
cpe:2.3:h:mediatek:mt6768:-
-
cpe:2.3:h:mediatek:mt6769:-
-
cpe:2.3:h:mediatek:mt6769t:-
-
cpe:2.3:h:mediatek:mt6769z:-
-
cpe:2.3:h:mediatek:mt6771:-
-
cpe:2.3:h:mediatek:mt6779:-
-
cpe:2.3:h:mediatek:mt6783:-
-
cpe:2.3:h:mediatek:mt6785:-
-
cpe:2.3:h:mediatek:mt6785t:-
-
cpe:2.3:o:mediatek:modem:lr12a
-
cpe:2.3:o:mediatek:modem:lr13