Vulnerability Details CVE-2024-20152
In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue ID: MSV-1798.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.3%
CVSS Severity
CVSS v3 Score 4.4
Products affected by CVE-2024-20152
-
cpe:2.3:a:linuxfoundation:yocto:3.3
-
cpe:2.3:a:linuxfoundation:yocto:4.0
-
cpe:2.3:a:linuxfoundation:yocto:5.0
-
cpe:2.3:a:mediatek:software_development_kit:*
-
cpe:2.3:h:mediatek:mt2737:-
-
cpe:2.3:h:mediatek:mt3603:-
-
cpe:2.3:h:mediatek:mt6835:-
-
cpe:2.3:h:mediatek:mt6878:-
-
cpe:2.3:h:mediatek:mt6886:-
-
cpe:2.3:h:mediatek:mt6897:-
-
cpe:2.3:h:mediatek:mt6990:-
-
cpe:2.3:h:mediatek:mt7902:-
-
cpe:2.3:h:mediatek:mt7920:-
-
cpe:2.3:h:mediatek:mt7922:-
-
cpe:2.3:h:mediatek:mt8518s:-
-
cpe:2.3:h:mediatek:mt8532:-
-
cpe:2.3:h:mediatek:mt8755:-
-
cpe:2.3:h:mediatek:mt8766:-
-
cpe:2.3:h:mediatek:mt8768:-
-
cpe:2.3:h:mediatek:mt8775:-
-
cpe:2.3:h:mediatek:mt8781:-
-
cpe:2.3:h:mediatek:mt8796:-
-
cpe:2.3:h:mediatek:mt8798:-
-
cpe:2.3:h:mediatek:mt8893:-
-
cpe:2.3:o:google:android:13.0
-
cpe:2.3:o:google:android:14.0
-
cpe:2.3:o:google:android:15.0
-
cpe:2.3:o:openwrt:openwrt:23.05