Mediatek Mt6737
107 CVEs affecting Mediatek Mt6737. Latest disclosed: 2024-02-05. Critical: 4, High: 17.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-20819 | Critical | 9.8 | 2023-10-02 | In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no addition… |
CVE-2022-26447 | Critical | 9.8 | 2022-09-06 | In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution pr… |
CVE-2022-21744 | Critical | 9.8 | 2022-07-06 | In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neigh… |
CVE-2022-20083 | Critical | 9.8 | 2022-07-06 | In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACIL… |
CVE-2022-20111 | High | 8.4 | 2022-05-03 | In ion, there is a possible use after free due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privi… |
CVE-2023-20773 | High | 7.8 | 2023-07-04 | In vow, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional exec… |
CVE-2023-20655 | High | 7.8 | 2023-04-06 | In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution pri… |
CVE-2022-26469 | High | 7.8 | 2022-09-06 | In MtkEmail, there is a possible escalation of privilege due to fragment injection. This could lead to local escalation of privilege with no additional executi… |
CVE-2022-21743 | High | 7.8 | 2022-05-03 | In ion, there is a possible use after free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges… |
CVE-2022-20109 | High | 7.8 | 2022-05-03 | In ion, there is a possible use after free due to improper update of reference count. This could lead to local escalation of privilege with no additional execu… |
CVE-2022-20093 | High | 7.8 | 2022-05-03 | In telephony, there is a possible way to disable receiving SMS messages due to a missing permission check. This could lead to local escalation of privilege wit… |
CVE-2022-20084 | High | 7.8 | 2022-05-03 | In telephony, there is a possible way to disable receiving emergency broadcasts due to a missing permission check. This could lead to local escalation of privi… |
CVE-2022-20053 | High | 7.8 | 2022-03-10 | In ims service, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additio… |
CVE-2022-20040 | High | 7.8 | 2022-02-09 | In power_hal_manager_service, there is a possible permission bypass due to a stack-based buffer overflow. This could lead to local escalation of privilege with… |
CVE-2022-20031 | High | 7.8 | 2022-02-09 | In fb driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution priv… |
CVE-2021-0675 | High | 7.8 | 2021-12-15 | In alac decoder, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional… |
CVE-2021-0612 | High | 7.8 | 2021-09-27 | In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed… |
CVE-2021-0611 | High | 7.8 | 2021-09-27 | In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed… |
CVE-2021-0610 | High | 7.8 | 2021-09-27 | In memory management driver, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additio… |
CVE-2023-32889 | High | 7.5 | 2024-01-02 | In Modem IMS Call UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with no additional exe… |