Mediatek Mt8518s
17 CVEs affecting Mediatek Mt8518s. Latest disclosed: 2025-02-03. Critical: 1, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-20148 | Critical | 9.8 | 2025-01-06 | In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/adjacent) code execution with no… |
CVE-2024-20040 | High | 8.8 | 2024-04-01 | In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation of privilege with no additiona… |
CVE-2024-20146 | High | 8.1 | 2025-01-06 | In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/adjacent) code execution with… |
CVE-2024-20153 | High | 7.5 | 2025-01-06 | In wlan STA, there is a possible way to trick a client to connect to an AP with spoofed SSID. This could lead to remote information disclosure with no addition… |
CVE-2023-32820 | High | 7.5 | 2023-10-02 | In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional executi… |
CVE-2022-32663 | High | 7.5 | 2023-02-06 | In Wi-Fi driver, there is a possible system crash due to null pointer dereference. This could lead to remote denial of service with no additional execution pri… |
CVE-2024-20140 | Medium | 6.7 | 2025-01-06 | In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has alre… |
CVE-2022-32656 | Medium | 6.7 | 2023-02-06 | In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution… |
CVE-2022-32655 | Medium | 6.7 | 2023-02-06 | In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution… |
CVE-2022-32654 | Medium | 6.7 | 2023-02-06 | In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution… |
CVE-2022-32659 | Medium | 6.7 | 2023-01-03 | In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution… |
CVE-2024-20139 | Medium | 6.5 | 2024-12-02 | In Bluetooth firmware, there is a possible firmware asssert due to improper handling of exceptional conditions. This could lead to local denial of service with… |
CVE-2024-20147 | Medium | 5.3 | 2025-02-03 | In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This could lead to remote denial of service with no additional exe… |
CVE-2024-20152 | Medium | 4.4 | 2025-01-06 | In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor… |
CVE-2023-32810 | Medium | 4.4 | 2023-09-04 | In bluetooth driver, there is a possible out of bounds read due to improper input validation. This could lead to local information leak with System execution p… |
CVE-2022-32639 | Medium | 4.4 | 2023-01-03 | In watchdog, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privi… |
CVE-2023-20838 | Medium | 4.0 | 2023-09-04 | In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges nee… |