Vulnerability Details CVE-2022-20108
In voice service, there is a possible out of bounds write due to a stack-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03330702; Issue ID: DTV03330702.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.9%
CVSS Severity
CVSS v3 Score 6.7
CVSS v2 Score 4.6
References
Products affected by CVE-2022-20108
-
cpe:2.3:h:mediatek:mt9011:-
-
cpe:2.3:h:mediatek:mt9215:-
-
cpe:2.3:h:mediatek:mt9216:-
-
cpe:2.3:h:mediatek:mt9220:-
-
cpe:2.3:h:mediatek:mt9221:-
-
cpe:2.3:h:mediatek:mt9255:-
-
cpe:2.3:h:mediatek:mt9256:-
-
cpe:2.3:h:mediatek:mt9266:-
-
cpe:2.3:h:mediatek:mt9269:-
-
cpe:2.3:h:mediatek:mt9285:-
-
cpe:2.3:h:mediatek:mt9286:-
-
cpe:2.3:h:mediatek:mt9288:-
-
cpe:2.3:h:mediatek:mt9600:-
-
cpe:2.3:h:mediatek:mt9602:-
-
cpe:2.3:h:mediatek:mt9610:-
-
cpe:2.3:h:mediatek:mt9611:-
-
cpe:2.3:h:mediatek:mt9612:-
-
cpe:2.3:h:mediatek:mt9613:-
-
cpe:2.3:h:mediatek:mt9615:-
-
cpe:2.3:h:mediatek:mt9617:-
-
cpe:2.3:h:mediatek:mt9629:-
-
cpe:2.3:h:mediatek:mt9630:-
-
cpe:2.3:h:mediatek:mt9631:-
-
cpe:2.3:h:mediatek:mt9632:-
-
cpe:2.3:h:mediatek:mt9636:-
-
cpe:2.3:h:mediatek:mt9638:-
-
cpe:2.3:h:mediatek:mt9639:-
-
cpe:2.3:h:mediatek:mt9650:-
-
cpe:2.3:h:mediatek:mt9652:-
-
cpe:2.3:h:mediatek:mt9666:-
-
cpe:2.3:h:mediatek:mt9669:-
-
cpe:2.3:h:mediatek:mt9670:-
-
cpe:2.3:h:mediatek:mt9675:-
-
cpe:2.3:h:mediatek:mt9685:-
-
cpe:2.3:h:mediatek:mt9686:-
-
cpe:2.3:h:mediatek:mt9688:-
-
cpe:2.3:o:google:android:10.0
-
cpe:2.3:o:google:android:11.0
-
cpe:2.3:o:google:android:9.0
-
cpe:2.3:o:linux:linux_kernel:4.19
-
cpe:2.3:o:linux:linux_kernel:4.9