Back

CVE-2024-20076

July 1, 2024, 12:37 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Modem

Source

security@mediatek.com

Tags

CWE-119
security@mediatek.com
2024-07-01
CVE-2024-20076

CVE-2024-20076 details

Published : July 1, 2024, 5:15 a.m.
Last Modified : July 1, 2024, 12:37 p.m.

Description

In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01297806; Issue ID: MSV-1481.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

URL Source
https://corp.mediatek.com/product-security-bulletin/July-2024 security@mediatek.com
This website uses the NVD API, but is not approved or certified by it.