Vulnerability Details CVE-2022-20107
In subtitle service, there is a possible application crash due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03330673; Issue ID: DTV03330673.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.7%
CVSS Severity
CVSS v3 Score 4.4
CVSS v2 Score 4.9
References
Products affected by CVE-2022-20107
-
cpe:2.3:h:mediatek:mt9011:-
-
cpe:2.3:h:mediatek:mt9215:-
-
cpe:2.3:h:mediatek:mt9216:-
-
cpe:2.3:h:mediatek:mt9220:-
-
cpe:2.3:h:mediatek:mt9221:-
-
cpe:2.3:h:mediatek:mt9255:-
-
cpe:2.3:h:mediatek:mt9256:-
-
cpe:2.3:h:mediatek:mt9266:-
-
cpe:2.3:h:mediatek:mt9269:-
-
cpe:2.3:h:mediatek:mt9285:-
-
cpe:2.3:h:mediatek:mt9286:-
-
cpe:2.3:h:mediatek:mt9288:-
-
cpe:2.3:h:mediatek:mt9600:-
-
cpe:2.3:h:mediatek:mt9602:-
-
cpe:2.3:h:mediatek:mt9610:-
-
cpe:2.3:h:mediatek:mt9611:-
-
cpe:2.3:h:mediatek:mt9612:-
-
cpe:2.3:h:mediatek:mt9613:-
-
cpe:2.3:h:mediatek:mt9615:-
-
cpe:2.3:h:mediatek:mt9617:-
-
cpe:2.3:h:mediatek:mt9629:-
-
cpe:2.3:h:mediatek:mt9630:-
-
cpe:2.3:h:mediatek:mt9631:-
-
cpe:2.3:h:mediatek:mt9632:-
-
cpe:2.3:h:mediatek:mt9636:-
-
cpe:2.3:h:mediatek:mt9638:-
-
cpe:2.3:h:mediatek:mt9639:-
-
cpe:2.3:h:mediatek:mt9650:-
-
cpe:2.3:h:mediatek:mt9652:-
-
cpe:2.3:h:mediatek:mt9666:-
-
cpe:2.3:h:mediatek:mt9669:-
-
cpe:2.3:h:mediatek:mt9670:-
-
cpe:2.3:h:mediatek:mt9675:-
-
cpe:2.3:h:mediatek:mt9685:-
-
cpe:2.3:h:mediatek:mt9686:-
-
cpe:2.3:h:mediatek:mt9688:-
-
cpe:2.3:o:google:android:10.0
-
cpe:2.3:o:google:android:11.0
-
cpe:2.3:o:google:android:9.0
-
cpe:2.3:o:linux:linux_kernel:4.19
-
cpe:2.3:o:linux:linux_kernel:4.9