ГлавнаяУязвимости → CVE-2024-20053
8.4высокая

CVE-2024-20053

Описание

In flashc, there is a possible out of bounds write due to an uncaught exception. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541757; Issue ID: ALPS08541764.

Затрагиваемое ПО
Linuxfoundation YoctoRdkcentral Rdk-bGoogle AndroidOpenwrt OpenwrtMediatek Mt2713Mediatek Mt2737Mediatek Mt6781Mediatek Mt6789Mediatek Mt6835Mediatek Mt6855Mediatek Mt6879Mediatek Mt6880Mediatek Mt6886Mediatek Mt6890Mediatek Mt6895Mediatek Mt6980Mediatek Mt6983Mediatek Mt6985Mediatek Mt6989Mediatek Mt6990Mediatek Mt8167Mediatek Mt8168Mediatek Mt8173Mediatek Mt8175Mediatek Mt8188
CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://corp.mediatek.com/product-security-bulletin/April-2024https://corp.mediatek.com/product-security-bulletin/April-2024