ГлавнаяУязвимости → CVE-2024-20029
8.4высокая

CVE-2024-20029

Описание

In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08477406; Issue ID: MSV-1010.

Затрагиваемое ПО
Google AndroidMediatek Mt6985Mediatek Mt6989Mediatek Mt8678Mediatek Mt8796
CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://corp.mediatek.com/product-security-bulletin/March-2024https://corp.mediatek.com/product-security-bulletin/March-2024