CVE-2024-20131

EUVD-2024-17846
In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issue ID: MSV-1873.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 34%
Affected Products (NVD)
VendorProductVersion
mediateknr16
-
mediateknr17
-
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
mediatekmt2737
𝑥
≤ *
ADP
mediatekmt2739
𝑥
≤ *
ADP
mediatekmt6789
𝑥
≤ *
ADP
mediatekmt6813
𝑥
≤ *
ADP
mediatekmt6815
𝑥
≤ *
ADP
mediatekmt6835
𝑥
≤ *
ADP
mediatekmt6835t
𝑥
≤ *
ADP
mediatekmt6855
𝑥
≤ *
ADP
mediatekmt6878
𝑥
≤ *
ADP
mediatekmt6878t
𝑥
≤ *
ADP
mediatekmt6879
𝑥
≤ *
ADP
mediatekmt6886
𝑥
≤ *
ADP
mediatekmt6895
𝑥
≤ *
ADP
mediatekmt6895t
𝑥
≤ *
ADP
mediatekmt6896
𝑥
≤ *
ADP
mediatekmt6897
𝑥
≤ *
ADP
mediatekmt6899
𝑥
≤ *
ADP
mediatekmt6980
𝑥
≤ *
ADP
mediatekmt6980d
𝑥
≤ *
ADP
mediatekmt6983
𝑥
≤ *
ADP
mediatekmt6985
𝑥
≤ *
ADP
mediatekmt6986
𝑥
≤ *
ADP
mediatekmt6986d
𝑥
≤ *
ADP
mediatekmt6988
𝑥
≤ *
ADP
mediatekmt6989
𝑥
≤ *
ADP
mediatekmt6990
𝑥
≤ *
ADP
mediatekmt6991
𝑥
≤ *
ADP
mediatekmt8673
𝑥
≤ *
ADP
mediatekmt8676
𝑥
≤ *
ADP
mediatekmt8795t
𝑥
≤ *
ADP
mediatekmt8798
𝑥
≤ *
ADP
Common Weakness Enumeration
References
https://corp.mediatek.com/product-security-bulletin/December-2024