CVE-2024-20145 | MediaTek MT8676 V6 DA out-of-bounds write (MSV-2040 / ALPS09290940)

A vulnerability classified as critical has been found in MediaTek MT2737, MT6781, MT6789, MT6835, MT6855, MT6878, MT6879, MT6880, MT6886, MT6890, MT6895, MT6897, MT6980, MT6983, MT6985, MT6989, MT6990 and MT8676. Affected is an unknown function of the component V6 DA. The manipulation leads to out-of-bounds write.

This vulnerability is traded as CVE-2024-20145. It is possible to launch the attack on the physical device. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-20145 | MediaTek MT8676 V6 DA out-of-bounds write (MSV-2040 / ALPS09290940)

Post correlati

CVE-2024-27348 | Apache HugeGraph-Server up to 1.2.x RESTful-API Privilege Escalation

CVE-2024-33687 | OMRON NJ Series CPU Unit/NX Series CPU Unit data authenticity (OMSR-2024-004)

CVE-2024-33661 | Portainer up to 2.19.x redirect

CVE-2024-0929 | Tenda AC10U 15.03.06.49_multi_TDE01 fromNatStaticSetting page stack-based overflow