CVE-2024-20130
EUVD-2024-1784502.12.2024, 04:15
In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09193374; Issue ID: MSV-1982.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| android | 14.0 | |
| android | 15.0 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| mediatek | mt6739 | 𝑥 ≤ * | ADP |
| mediatek | mt6761 | 𝑥 ≤ * | ADP |
| mediatek | mt6765 | 𝑥 ≤ * | ADP |
| mediatek | mt6768 | 𝑥 ≤ * | ADP |
| mediatek | mt6781 | 𝑥 ≤ * | ADP |
| mediatek | mt6789 | 𝑥 ≤ * | ADP |
| mediatek | mt6833 | 𝑥 ≤ * | ADP |
| mediatek | mt6835 | 𝑥 ≤ * | ADP |
| mediatek | mt6853 | 𝑥 ≤ * | ADP |
| mediatek | mt6855 | 𝑥 ≤ * | ADP |
| mediatek | mt6877 | 𝑥 ≤ * | ADP |
| mediatek | mt6878 | 𝑥 ≤ * | ADP |
| mediatek | mt6879 | 𝑥 ≤ * | ADP |
| mediatek | mt6883 | 𝑥 ≤ * | ADP |
| mediatek | mt6885 | 𝑥 ≤ * | ADP |
| mediatek | mt6886 | 𝑥 ≤ * | ADP |
| mediatek | mt6889 | 𝑥 ≤ * | ADP |
| mediatek | mt6893 | 𝑥 ≤ * | ADP |
| mediatek | mt6895 | 𝑥 ≤ * | ADP |
| mediatek | mt6896 | 𝑥 ≤ * | ADP |
| mediatek | mt6897 | 𝑥 ≤ * | ADP |
| mediatek | mt6983 | 𝑥 ≤ * | ADP |
| mediatek | mt6985 | 𝑥 ≤ * | ADP |
| mediatek | mt6989 | 𝑥 ≤ * | ADP |
| mediatek | mt8195 | 𝑥 ≤ * | ADP |
| mediatek | mt8676 | 𝑥 ≤ * | ADP |
| mediatek | mt8678 | 𝑥 ≤ * | ADP |
| mediatek | mt8696 | 𝑥 ≤ * | ADP |
| mediatek | mt8796 | 𝑥 ≤ * | ADP |
Common Weakness Enumeration
- CWE-121 - Stack-based Buffer OverflowA stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.