CVE-2024-20065 - AskarLabs CVE Database

CVE-2024-20065

Vendor Mediatek, Inc.

Product MT6768, MT6781, MT6835, MT6853, MT6855, MT6877, MT6879, MT6885, MT6886, MT6893, MT6983, MT6985, MT6989

Weakness CWE-284

Published June 3, 2024

Last update November 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

In telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08698617; Issue ID: MSV-1394.

Key dates

02Disclosure timeline

June 3, 2024 CVE published

November 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-20065

Related vulnerabilities

04Related CVE

CVE-2025-12808 CVE-2024-27891 On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. CVE-2024-1476 Under Construction / Maintenance Mode from Acurax <= 2.6 - Information Exposure CVE-2021-25954 Improper Access Control in “Dolibarr” CVE-2024-21666 Pimcore Customer Data Framework Improper Access Control allows unprivileged user to access customers duplicates list