Vulnerability Details CVE-2022-26445
In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420088; Issue ID: GN20220420088.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.7%
CVSS Severity
CVSS v3 Score 6.7
References
Products affected by CVE-2022-26445
-
cpe:2.3:h:mediatek:mt7603:-
-
cpe:2.3:h:mediatek:mt7610:-
-
cpe:2.3:h:mediatek:mt7612:-
-
cpe:2.3:h:mediatek:mt7613:-
-
cpe:2.3:h:mediatek:mt7615:-
-
cpe:2.3:h:mediatek:mt7620:-
-
cpe:2.3:h:mediatek:mt7622:-
-
cpe:2.3:h:mediatek:mt7628:-
-
cpe:2.3:h:mediatek:mt7629:-
-
cpe:2.3:h:mediatek:mt7915:-
-
cpe:2.3:h:mediatek:mt7916:-
-
cpe:2.3:h:mediatek:mt7986:-
-
cpe:2.3:h:mediatek:mt8981:-
-
cpe:2.3:o:mediatek:mt7603_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7610_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7612_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7613_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7615_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7620_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7622_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7628_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7629_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7915_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7916_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt7986_firmware:7.6.2.3
-
cpe:2.3:o:mediatek:mt8981_firmware:7.6.2.3