Vulnerability Details CVE-2024-20055
In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.1%
CVSS Severity
CVSS v3 Score 6.3
References
Products affected by CVE-2024-20055
-
cpe:2.3:a:linuxfoundation:yocto:4.0
-
cpe:2.3:a:mediatek:iot_yocto:23.2
-
cpe:2.3:h:mediatek:mt2713:-
-
cpe:2.3:h:mediatek:mt8168:-
-
cpe:2.3:h:mediatek:mt8173:-
-
cpe:2.3:h:mediatek:mt8175:-
-
cpe:2.3:h:mediatek:mt8188:-
-
cpe:2.3:h:mediatek:mt8195:-
-
cpe:2.3:h:mediatek:mt8365:-
-
cpe:2.3:h:mediatek:mt8370:-
-
cpe:2.3:h:mediatek:mt8390:-
-
cpe:2.3:h:mediatek:mt8395:-
-
cpe:2.3:h:mediatek:mt8673:-
-
cpe:2.3:h:mediatek:mt8696:-
-
cpe:2.3:h:mediatek:mt8781:-
-
cpe:2.3:h:mediatek:mt8795t:-
-
cpe:2.3:h:mediatek:mt8798:-
-
cpe:2.3:h:mediatek:mt8871:-
-
cpe:2.3:o:google:android:12.0
-
cpe:2.3:o:google:android:13.0