CVE-2024-20142 | MediaTek MT8893 V5 DA out-of-bounds write (MSV-2070 / ALPS09291406)

A vulnerability was found in MediaTek MT6739, MT6761, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6833, MT6853, MT6873, MT6877, MT6885, MT6893, MT8167, MT8167S, MT8175, MT8185, MT8195, MT8321, MT8362A, MT8365, MT8385, MT8395, MT8666, MT8667, MT8673, MT8675, MT8678, MT8765, MT8766, MT8768, MT8771, MT8775, MT8781, MT8786, MT8788, MT8789, MT8791T, MT8795T, MT8797, MT8798 and MT8893. It has been classified as critical. Affected is an unknown function of the component V5 DA. The manipulation leads to out-of-bounds write.

This vulnerability is traded as CVE-2024-20142. Attacking locally is a requirement. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-20142 | MediaTek MT8893 V5 DA out-of-bounds write (MSV-2070 / ALPS09291406)

Related Posts

CVE-2024-9862 | miniOrange OTP Verification with Firebase Plugin up to 3.6.0 on WordPress unverified password change

CVE-2021-47208 | Mojolicious Module up to 9.10 on Perl Format Detection denial of service (Issue 1736)

CVE-2024-46983 | sofastack sofa-hessian up to 3.5.4 SOFA Hessian Protocol injection (GHSA-c459-2m73-67hj)

CVE-2024-6744 | Cellopoint Secure Email Gateway up to 4.5.0 SMTP Listener stack-based overflow