CVE-2024-20127 | MediaTek MT6580 Telephony out-of-bounds (MSV-2023 / ALPS09289881)

A vulnerability was found in MediaTek MT6580, MT6739, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6896, MT6897, MT6983, MT6985, MT6989, MT8321, MT8666, MT8667, MT8673, MT8678, MT8765, MT8766, MT8766R, MT8768, MT8771, MT8781, MT8786, MT8788, MT8788E, MT8791T, MT8797, MT8798 and MT8863T. It has been rated as problematic. This issue affects some unknown processing of the component Telephony. The manipulation leads to out-of-bounds read.

The identification of this vulnerability is CVE-2024-20127. The attack may be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-20127 | MediaTek MT6580 Telephony out-of-bounds (MSV-2023 / ALPS09289881)

Post correlati

CVE-2023-37389 | Saasproject Booking Package Plugin up to 1.5.98 on WordPress privileges management

CVE-2024-31304 | MultiVendorX WC Marketplace Plugin up to 4.1.3 on WordPress authorization

CVE-2024-7345 | Progress OpenEdge up to 11.7.19/12.2.14 Multi-Session Agent code injection

CVE-2023-51556 | Foxit PDF Reader AcroForm Doc use after free (ZDI-23-1869)