Mediatek Software Development Kit vulnerabilities

71 known vulnerabilities affecting mediatek/software_development_kit.

Total CVEs
71
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL13HIGH30MEDIUM28

Vulnerabilities

Page 4 of 4
CVE-2024-20138HIGHCVSS 7.5≤ 3.32024-12-02
CVE-2024-20138 [HIGH] CWE-125 CVE-2024-20138: In wlan driver, there is a possible out of bound read due to improper input validation. This could l In wlan driver, there is a possible out of bound read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998291; Issue ID: MSV-1604.
nvd
CVE-2024-20139MEDIUMCVSS 6.5≤ 3.32024-12-02
CVE-2024-20139 [MEDIUM] CWE-617 CVE-2024-20139: In Bluetooth firmware, there is a possible firmware asssert due to improper handling of exceptional In Bluetooth firmware, there is a possible firmware asssert due to improper handling of exceptional conditions. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001270; Issue ID: MSV-1600.
nvd
CVE-2024-20101CRITICALCVSS 9.8≤ 3.32024-10-07
CVE-2024-20101 [CRITICAL] CWE-787 CVE-2024-20101: In wlan driver, there is a possible out of bounds write due to improper input validation. This could In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998901; Issue ID: MSV-1602.
nvd
CVE-2024-20103CRITICALCVSS 9.8≤ 3.32024-10-07
CVE-2024-20103 [CRITICAL] CWE-787 CVE-2024-20103: In wlan firmware, there is a possible out of bounds write due to improper input validation. This cou In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001358; Issue ID: MSV-1599.
nvd
CVE-2024-20100CRITICALCVSS 9.8≤ 3.32024-10-07
CVE-2024-20100 [CRITICAL] CWE-787 CVE-2024-20100: In wlan driver, there is a possible out of bounds write due to improper input validation. This could In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Issue ID: MSV-1603.
nvd
CVE-2024-20071MEDIUMCVSS 4.4≤ 5.0.5.02024-06-03
CVE-2024-20071 [MEDIUM] CWE-125 CVE-2024-20071: In wlan driver, there is a possible out of bounds read due to improper input validation. This could In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00364733; Issue ID: MSV-1331.
nvd
CVE-2024-20072MEDIUMCVSS 6.6≤ 5.0.5.02024-06-03
CVE-2024-20072 [MEDIUM] CWE-787 CVE-2024-20072: In wlan driver, there is a possible out of bounds write due to improper input validation. This could In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00364732; Issue ID: MSV-1332.
nvd
CVE-2024-20073MEDIUMCVSS 6.6≤ 5.0.5.02024-06-03
CVE-2024-20073 [MEDIUM] CWE-787 CVE-2024-20073: In wlan service, there is a possible out of bounds write due to improper input validation. This coul In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00367704; Issue ID: MSV-1411.
nvd
CVE-2024-20017CRITICALCVSS 9.8≤ 7.4.0.1≤ 7.6.7.02024-03-04
CVE-2024-20017 [CRITICAL] CWE-20 CVE-2024-20017: In wlan service, there is a possible out of bounds write due to improper input validation. This coul In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation Patch ID: WCNCR00350938; Issue ID: MSV-1132.
nvd
CVE-2024-20018CRITICALCVSS 9.8≤ 5.1.0.02024-03-04
CVE-2024-20018 [CRITICAL] CWE-787 CVE-2024-20018: In wlan driver, there is a possible out of bounds write due to improper input validation. This could In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00348479; Issue ID: MSV-1019.
nvd
CVE-2023-32831MEDIUMCVSS 5.5≤ 7.6.7.12024-01-02
CVE-2023-32831 [MEDIUM] CWE-330 CVE-2023-32831: In wlan driver, there is a possible PIN crack due to use of insufficiently random values. This could In wlan driver, there is a possible PIN crack due to use of insufficiently random values. This could lead to local information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00325055; Issue ID: MSV-868.
nvd
← Previous4 / 4