CVE-2024-20133 - AskarLabs CVE Database

CVE-2024-20133

Vendor Mediatek, Inc.

Product MT6879, MT6886, MT6895, MT6895T, MT6896, MT6980, MT6983, MT8673, MT8676, MT8795T, MT8798

Weakness CWE-787

Published December 2, 2024

Last update December 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issue ID: MSV-1871.

Key dates

02Disclosure timeline

December 2, 2024 CVE published

December 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-20133

Related vulnerabilities

04Related CVE

CVE-2026-21307 Substance3D - Designer | Out-of-bounds Write (CWE-787) CVE-2023-7244 Ethercat Zeek Plugin Out-of-bounds Write CVE-2023-5643 Mali GPU Kernel Driver allows improper GPU memory processing operations CVE-2023-38231 ZDI-CAN-21334: Adobe Acrobat Reader DC Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability CVE-2019-6748