Shodan
Vulnerabilities
Vulnerable Software
Mediatek:  >> Mt8797  Security Vulnerabilities
CVE-2024-20069
In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430.
CVSS Score
6.5
EPSS Score
0.002
Published
2024-06-03
CVE-2023-32871
In DA, there is a possible permission bypass due to an incorrect status check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08355514; Issue ID: ALPS08355514.
CVSS Score
5.3
EPSS Score
0.0
Published
2024-05-06
CVE-2024-20058
In keyInstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08580204; Issue ID: ALPS08580204.
CVSS Score
4.4
EPSS Score
0.0
Published
2024-05-06
CVE-2024-20043
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541781; Issue ID: ALPS08541781.
CVSS Score
6.6
EPSS Score
0.0
Published
2024-04-01
CVE-2024-20044
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541784; Issue ID: ALPS08541784.
CVSS Score
6.6
EPSS Score
0.0
Published
2024-04-01
CVE-2024-20045
In audio, there is a possible out of bounds read due to an incorrect calculation of buffer size. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08024748; Issue ID: ALPS08029526.
CVSS Score
2.3
EPSS Score
0.0
Published
2024-04-01
CVE-2024-20046
In battery, there is a possible escalation of privilege due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08485622; Issue ID: ALPS08485622.
CVSS Score
6.6
EPSS Score
0.001
Published
2024-04-01
CVE-2024-20047
In battery, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08587865; Issue ID: ALPS08486807.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-04-01
CVE-2024-20048
In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541769; Issue ID: ALPS08541769.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-04-01
CVE-2024-20049
In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541765; Issue ID: ALPS08541765.
CVSS Score
4.4
EPSS Score
0.0
Published
2024-04-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved