CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-20808

In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 0.9%

CVSS Severity

CVSS v3 Score 6.7

References

https://corp.mediatek.com/product-security-bulletin/August-2023
https://corp.mediatek.com/product-security-bulletin/August-2023

Products affected by CVE-2023-20808

Mediatek » Mt9011 » Version: N/A

cpe:2.3:h:mediatek:mt9011:-
Mediatek » Mt9022 » Version: N/A

cpe:2.3:h:mediatek:mt9022:-
Mediatek » Mt9618 » Version: N/A

cpe:2.3:h:mediatek:mt9618:-
Mediatek » Mt9649 » Version: N/A

cpe:2.3:h:mediatek:mt9649:-
Mediatek » Mt9653 » Version: N/A

cpe:2.3:h:mediatek:mt9653:-
Google » Android » Version: 11.0

cpe:2.3:o:google:android:11.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-20808

Products

Pricing

Contact Us