CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
34.4%
In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead to remote denial of service, if UE received invalid 1-byte rlc sdu, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00921261; Issue ID: MOLY01128895.
Vendor | Product | Version | CPE |
---|---|---|---|
mediatek | mt6835 | - | cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:* |
mediatek | mt6873 | - | cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* |
mediatek | mt6875 | - | cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:* |
mediatek | mt6879 | - | cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:* |
mediatek | mt6883 | - | cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:* |
mediatek | mt6885 | - | cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* |
mediatek | mt6886 | - | cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:* |
mediatek | mt6889 | - | cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:* |
mediatek | mt6895 | - | cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:* |
mediatek | mt6980 | - | cpe:2.3:h:mediatek:mt6980:-:*:*:*:*:*:*:* |