2022-10-28 03:00:31 +00:00
{
2023-06-06 13:00:42 +00:00
"data_version" : "4.0" ,
2022-10-28 03:00:31 +00:00
"data_type" : "CVE" ,
"data_format" : "MITRE" ,
"CVE_data_meta" : {
"ID" : "CVE-2023-20725" ,
2023-06-06 13:00:42 +00:00
"ASSIGNER" : "security@mediatek.com" ,
"STATE" : "PUBLIC"
2022-10-28 03:00:31 +00:00
} ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2023-06-06 13:00:42 +00:00
"value" : "In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07734004 / ALPS07874358 (For MT6880, MT6890, MT6980, MT6990 only); Issue ID: ALPS07734004 / ALPS07874358 (For MT6880, MT6890, MT6980, MT6990 only)."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "Elevation of Privilege"
}
]
}
]
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"vendor_name" : "MediaTek, Inc." ,
"product" : {
"product_data" : [
{
"product_name" : "MT6580, MT6739, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6853T, MT6855, MT6873, MT6877, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6893, MT6895, MT6980, MT6983, MT6985, MT6990, MT8167, MT8175, MT8195, MT8365, MT8385, MT8673, MT8781, MT8788, MT8789" ,
"version" : {
"version_data" : [
{
"version_affected" : "=" ,
"version_value" : "Android 12.0, 13.0 / OpenWrt 19.07, 21.02 / RDK-B 2022Q3"
}
]
}
}
]
}
}
]
}
} ,
"references" : {
"reference_data" : [
{
"url" : "https://corp.mediatek.com/product-security-bulletin/June-2023" ,
"refsource" : "MISC" ,
"name" : "https://corp.mediatek.com/product-security-bulletin/June-2023"
2022-10-28 03:00:31 +00:00
}
]
}
}
