In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637.
References
Link | Resource |
---|---|
https://corp.mediatek.com/product-security-bulletin/October-2023 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
03 Oct 2023, 01:07
Type | Values Removed | Values Added |
---|---|---|
First Time |
Mediatek mt8768
Mediatek mt5221 Mediatek mt8365 Google android Mediatek mt8673 Mediatek mt8789 Mediatek mt6983 Linuxfoundation yocto Mediatek mt8791 Linux linux Kernel Mediatek mt6889 Mediatek mt8781 Mediatek mt8766 Mediatek mt6895 Mediatek mt6875 Mediatek mt7668 Mediatek mt6873 Mediatek mt8532 Mediatek mt6886 Mediatek mt6781 Mediatek mt8168 Mediatek mt7921 Mediatek mt6885 Mediatek Mediatek mt7663 Mediatek mt6985 Linux Mediatek mt8666 Mediatek mt8518s Mediatek mt8675 Mediatek mt8798 Mediatek mt6893 Linuxfoundation Mediatek mt6877 Mediatek mt6879 Mediatek mt7902 Mediatek iot Yocto Mediatek mt8786 Mediatek mt6833 Mediatek mt6883 Mediatek mt6853t Mediatek mt6853 Mediatek mt6855 Mediatek mt6891 Mediatek mt8695 Mediatek mt8797 |
|
References | (MISC) https://corp.mediatek.com/product-security-bulletin/October-2023 - Vendor Advisory | |
CPE | cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:* cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7668:-:*:*:*:*:*:*:* cpe:2.3:a:linuxfoundation:yocto:3.3:*:*:*:*:*:*:* cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7902:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt5221:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8518s:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7921:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:4.19:-:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7663:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8532:-:*:*:*:*:*:*:* cpe:2.3:a:linuxfoundation:yocto:3.1:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:* |
|
CWE | CWE-617 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
02 Oct 2023, 03:53
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-02 03:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-32820
Mitre link : CVE-2023-32820
CVE.ORG link : CVE-2023-32820
JSON object : View
Products Affected
mediatek
- mt6875
- mt7902
- mt8786
- mt7663
- mt8797
- mt6885
- mt7668
- mt6853t
- mt6855
- mt5221
- mt6781
- mt8168
- mt6883
- mt8768
- mt8532
- mt6983
- mt8666
- iot_yocto
- mt6873
- mt6886
- mt7921
- mt6833
- mt8766
- mt8365
- mt6889
- mt8798
- mt6891
- mt8518s
- mt6879
- mt6893
- mt6877
- mt8695
- mt6895
- mt8781
- mt8675
- mt6985
- mt8789
- mt8791
- mt6853
- mt8673
linux
- linux_kernel
linuxfoundation
- yocto
- android
CWE
CWE-617
Reachable Assertion