CVE-2024-20128 | MediaTek MT6580 Telephony out-of-bounds (MSV-2024 / ALPS09289881)

A vulnerability classified as problematic has been found in MediaTek MT6580, MT6739, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6896, MT6897, MT6983, MT6985, MT6989, MT8321, MT8666, MT8667, MT8673, MT8678, MT8765, MT8766, MT8766R, MT8768, MT8771, MT8781, MT8786, MT8788, MT8788E, MT8791T, MT8797, MT8798 and MT8863T. Affected is an unknown function of the component Telephony. The manipulation leads to out-of-bounds read.

This vulnerability is traded as CVE-2024-20128. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-20128 | MediaTek MT6580 Telephony out-of-bounds (MSV-2024 / ALPS09289881)

Related Posts

CVE-2024-27622 | CMS Made Simple 2.2.19 User Defined Tags Module code injection

CVE-2024-3191 | MailCleaner up to 2023.03.14 Email os command injection (MZ-24-01)

CVE-2024-49623 | Hasan Movahed Duplicate Title Validate Plugin up to 1.0 on WordPress sql injection

CVE-2024-0628 | jeangalea WP RSS Aggregator Plugin 4.23.5 on WordPress RSS Feed Source server-side request forgery