Mediatek Mt8385
262 CVEs affecting Mediatek Mt8385. Latest disclosed: 2025-11-04. Critical: 3, High: 47.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-20083 | Critical | 9.8 | 2024-08-14 | In venc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileg… |
CVE-2024-20078 | Critical | 9.8 | 2024-07-01 | In venc, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges neede… |
CVE-2022-26447 | Critical | 9.8 | 2022-09-06 | In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution pr… |
CVE-2022-21768 | High | 8.8 | 2022-07-06 | In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execut… |
CVE-2022-21767 | High | 8.8 | 2022-07-06 | In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execut… |
CVE-2022-21745 | High | 8.8 | 2022-06-06 | In WIFI Firmware, there is a possible memory corruption due to a use after free. This could lead to remote escalation of privilege, when devices are connecting… |
CVE-2024-20053 | High | 8.4 | 2024-04-01 | In flashc, there is a possible out of bounds write due to an uncaught exception. This could lead to local escalation of privilege with System execution privile… |
CVE-2022-20111 | High | 8.4 | 2022-05-03 | In ion, there is a possible use after free due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privi… |
CVE-2024-20092 | High | 7.8 | 2024-10-07 | In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileg… |
CVE-2023-32851 | High | 7.8 | 2023-12-04 | In decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional executio… |
CVE-2023-32850 | High | 7.8 | 2023-12-04 | In decoder, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution p… |
CVE-2023-32847 | High | 7.8 | 2023-12-04 | In audio, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution… |
CVE-2023-20655 | High | 7.8 | 2023-04-06 | In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution pri… |
CVE-2022-32635 | High | 7.8 | 2023-01-03 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution pr… |
CVE-2022-32601 | High | 7.8 | 2022-11-08 | In telephony, there is a possible permission bypass due to a parcel format mismatch. This could lead to local escalation of privilege with no additional execut… |
CVE-2022-26472 | High | 7.8 | 2022-10-07 | In ims, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local escalation of privilege with no additional execut… |
CVE-2022-26471 | High | 7.8 | 2022-10-07 | In telephony, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local escalation of privilege with no additional… |
CVE-2022-26469 | High | 7.8 | 2022-09-06 | In MtkEmail, there is a possible escalation of privilege due to fragment injection. This could lead to local escalation of privilege with no additional executi… |
CVE-2022-26429 | High | 7.8 | 2022-08-01 | In cta, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege… |
CVE-2022-21777 | High | 7.8 | 2022-07-06 | In Autoboot, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execu… |