Lucene search

K
cvelistMediaTekCVELIST:CVE-2023-32874
HistoryJan 02, 2024 - 2:49 a.m.

CVE-2023-32874

2024-01-0202:49:38
MediaTek
www.cve.org
4
modem ims stack
out of bounds write
remote code execution
missing bounds check
patch id
issue id
no user interaction

AI Score

9.5

Confidence

High

EPSS

0.002

Percentile

61.9%

In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01161803; Issue ID: MOLY01161803 (MSV-893).

CNA Affected

[
  {
    "vendor": "MediaTek, Inc.",
    "product": "MT2735, MT6779, MT6781, MT6783, MT6785, MT6785T, MT6789, MT6813, MT6833, MT6833P, MT6835, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6877T, MT6878, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6895T, MT6896, MT6897, MT6980, MT6980D, MT6983T, MT6983W, MT6983Z, MT6985, MT6985T, MT6989, MT6990",
    "versions": [
      {
        "version": "Modem LR13 NR15, NR16, and NR17",
        "status": "affected"
      }
    ]
  }
]

AI Score

9.5

Confidence

High

EPSS

0.002

Percentile

61.9%

Related for CVELIST:CVE-2023-32874