CVE-2024-20025

EUVD-2024-17740
In da, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541686; Issue ID: ALPS08541686.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
Affected Products (NVD)
VendorProductVersion
googleandroid
12.0
googleandroid
13.0
googleandroid
14.0
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
mediatekmt6739
𝑥
≤ *
ADP
mediatekmt6757
𝑥
≤ *
ADP
mediatekmt6761
𝑥
≤ *
ADP
mediatekmt6763
𝑥
≤ *
ADP
mediatekmt6765
𝑥
≤ *
ADP
mediatekmt6768
𝑥
≤ *
ADP
mediatekmt6771
𝑥
≤ *
ADP
mediatekmt6779
𝑥
≤ *
ADP
mediatekmt6785
𝑥
≤ *
ADP
mediatekmt6833
𝑥
≤ *
ADP
mediatekmt6853
𝑥
≤ *
ADP
mediatekmt6873
𝑥
≤ *
ADP
mediatekmt6877
𝑥
≤ *
ADP
mediatekmt6885
𝑥
≤ *
ADP
mediatekmt6893
𝑥
≤ *
ADP
mediatekmt8167
𝑥
≤ *
ADP
mediatekmt8168
𝑥
≤ *
ADP
mediatekmt8173
𝑥
≤ *
ADP
mediatekmt8175
𝑥
≤ *
ADP
mediatekmt8185
𝑥
≤ *
ADP
mediatekmt8195
𝑥
≤ *
ADP
mediatekmt8321
𝑥
≤ *
ADP
mediatekmt8362a
𝑥
≤ *
ADP
mediatekmt8365
𝑥
≤ *
ADP
mediatekmt8385
𝑥
≤ *
ADP
mediatekmt8395
𝑥
≤ *
ADP
mediatekmt8666
𝑥
≤ *
ADP
mediatekmt8673
𝑥
≤ *
ADP
mediatekmt8678
𝑥
≤ *
ADP
mediatekmt8765
𝑥
≤ *
ADP
mediatekmt8766
𝑥
≤ *
ADP
mediatekmt8768
𝑥
≤ *
ADP
mediatekmt8781
𝑥
≤ *
ADP
mediatekmt8786
𝑥
≤ *
ADP
mediatekmt8788
𝑥
≤ *
ADP
mediatekmt8789
𝑥
≤ *
ADP
mediatekmt8791
𝑥
≤ *
ADP
mediatekmt8791t
𝑥
≤ *
ADP
mediatekmt8796
𝑥
≤ *
ADP
mediatekmt8797
𝑥
≤ *
ADP
mediatekmt8798
𝑥
≤ *
ADP
Common Weakness Enumeration
References
https://corp.mediatek.com/product-security-bulletin/March-2024
https://corp.mediatek.com/product-security-bulletin/March-2024