CVE-2024-20028

2024-03-0403:15:07

[email protected]

web.nvd.nist.gov

cve-2024-20028

local privilege escalation

out of bounds write

valudation

alps08541632

alps08541687

nvd

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

8.7%

JSON

In da, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541632; Issue ID: ALPS08541687.

VendorProductVersionCPE
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
mediatekmt6739*cpe:2.3:h:mediatek:mt6739:*:*:*:*:*:*:*:*
mediatekmt6757*cpe:2.3:h:mediatek:mt6757:*:*:*:*:*:*:*:*
mediatekmt6761*cpe:2.3:h:mediatek:mt6761:*:*:*:*:*:*:*:*
mediatekmt6763*cpe:2.3:h:mediatek:mt6763:*:*:*:*:*:*:*:*
mediatekmt6765*cpe:2.3:h:mediatek:mt6765:*:*:*:*:*:*:*:*
mediatekmt6768*cpe:2.3:h:mediatek:mt6768:*:*:*:*:*:*:*:*
mediatekmt6771*cpe:2.3:h:mediatek:mt6771:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
google	android	*	cpe:2.3:o:google:android::::::::
google	android	*	cpe:2.3:o:google:android::::::::
google	android	*	cpe:2.3:o:google:android::::::::
mediatek	mt6739	*	cpe:2.3:h:mediatek:mt6739::::::::
mediatek	mt6757	*	cpe:2.3:h:mediatek:mt6757::::::::
mediatek	mt6761	*	cpe:2.3:h:mediatek:mt6761::::::::
mediatek	mt6763	*	cpe:2.3:h:mediatek:mt6763::::::::
mediatek	mt6765	*	cpe:2.3:h:mediatek:mt6765::::::::
mediatek	mt6768	*	cpe:2.3:h:mediatek:mt6768::::::::
mediatek	mt6771	*	cpe:2.3:h:mediatek:mt6771::::::::

Rows per page:

1-10 of 221

References

corp.mediatek.com/product-security-bulletin/March-2024