cvelist/2022/20xxx/CVE-2022-20081.json

{
    "data_type": "CVE",
    "data_format": "MITRE",
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2022-20081",
        "ASSIGNER": "security@mediatek.com",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "MediaTek, Inc.",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "MT6580, MT6735, MT6737, MT6739, MT6753, MT6761, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6833, MT6853, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8666, MT8667, MT8675",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "Android 10.0, 11.0, 12.0"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Information Disclosure"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "refsource": "MISC",
                "name": "https://corp.mediatek.com/product-security-bulletin/April-2022",
                "url": "https://corp.mediatek.com/product-security-bulletin/April-2022"
            }
        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "In A-GPS, there is a possible man in the middle attack due to improper certificate validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06461919; Issue ID: ALPS06461919."
            }
        ]
    }
}
"-Synchronized-Data." 2021-10-12 14:00:54 +00:00			`{`
			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"data_version": "4.0",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2022-20081",`
"-Synchronized-Data." 2022-04-11 20:01:43 +00:00			`"ASSIGNER": "security@mediatek.com",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "MediaTek, Inc.",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "MT6580, MT6735, MT6737, MT6739, MT6753, MT6761, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6833, MT6853, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8666, MT8667, MT8675",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "Android 10.0, 11.0, 12.0"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Information Disclosure"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"refsource": "MISC",`
			`"name": "https://corp.mediatek.com/product-security-bulletin/April-2022",`
			`"url": "https://corp.mediatek.com/product-security-bulletin/April-2022"`
			`}`
			`]`
"-Synchronized-Data." 2021-10-12 14:00:54 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2022-04-11 20:01:43 +00:00			`"value": "In A-GPS, there is a possible man in the middle attack due to improper certificate validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06461919; Issue ID: ALPS06461919."`
"-Synchronized-Data." 2021-10-12 14:00:54 +00:00			`}`
			`]`
			`}`
			`}`