Mediatek Mt8666
213 CVEs affecting Mediatek Mt8666. Latest disclosed: 2026-03-02. Critical: 5, High: 47.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-20083 | Critical | 9.8 | 2024-08-14 | In venc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileg… |
CVE-2024-20080 | Critical | 9.8 | 2024-07-01 | In gnss service, there is a possible escalation of privilege due to improper certificate validation. This could lead to remote escalation of privilege with no… |
CVE-2023-20819 | Critical | 9.8 | 2023-10-02 | In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no addition… |
CVE-2022-21744 | Critical | 9.8 | 2022-07-06 | In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neigh… |
CVE-2022-20083 | Critical | 9.8 | 2022-07-06 | In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACIL… |
CVE-2024-20154 | High | 8.8 | 2025-01-06 | In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue bas… |
CVE-2024-20039 | High | 8.8 | 2024-04-01 | In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution… |
CVE-2024-20053 | High | 8.4 | 2024-04-01 | In flashc, there is a possible out of bounds write due to an uncaught exception. This could lead to local escalation of privilege with System execution privile… |
CVE-2022-20111 | High | 8.4 | 2022-05-03 | In ion, there is a possible use after free due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privi… |
CVE-2024-20005 | High | 8.2 | 2024-03-04 | In da, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with System execution privileg… |
CVE-2025-20727 | High | 8.1 | 2025-11-04 | In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege, if a UE has connected to a… |
CVE-2024-20146 | High | 8.1 | 2025-01-06 | In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/adjacent) code execution with… |
CVE-2026-20412 | High | 7.8 | 2026-02-02 | In cameraisp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has… |
CVE-2026-20411 | High | 7.8 | 2026-02-02 | In cameraisp, there is a possible escalation of privilege due to use after free. This could lead to local denial of service if a malicious actor has already ob… |
CVE-2024-20092 | High | 7.8 | 2024-10-07 | In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileg… |
CVE-2023-20655 | High | 7.8 | 2023-04-06 | In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution pri… |
CVE-2022-32635 | High | 7.8 | 2023-01-03 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution pr… |
CVE-2022-32601 | High | 7.8 | 2022-11-08 | In telephony, there is a possible permission bypass due to a parcel format mismatch. This could lead to local escalation of privilege with no additional execut… |
CVE-2022-26472 | High | 7.8 | 2022-10-07 | In ims, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local escalation of privilege with no additional execut… |
CVE-2022-26471 | High | 7.8 | 2022-10-07 | In telephony, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local escalation of privilege with no additional… |