SecuriTricks - CVE-2024-20085

Description

In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08944204; Issue ID: MSV-1560.

Product(s) Impacted

Vendor	Product	Versions
Linuxfoundation	Yocto	2.6, 3.3, 4.0
Rdkcentral	Rdk-b	2022q3
Google	Android	13.0, 14.0
Openwrt	Openwrt	19.07.0, 21.02, 22.03.5
Mediatek	Mt6580 Mt6739 Mt6761 Mt6765 Mt6768 Mt6779 Mt6781 Mt6785 Mt6789 Mt6833 Mt6835 Mt6853 Mt6855 Mt6873 Mt6877 Mt6879 Mt6880 Mt6883 Mt6885 Mt6886 Mt6889 Mt6890 Mt6893 Mt6895 Mt6897 Mt6980 Mt6983 Mt6985 Mt6989 Mt6990 Mt8183 Mt8188 Mt8195 Mt8390 Mt8395 Mt8673 Mt8675 Mt8676 Mt8678	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Weaknesses

CWE-125

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

*CPE(s)

Type	Vendor	Product	Version	Update	Edition	Language	Software Edition	Target Software	Target Hardware	Other Information
a	linuxfoundation	yocto	2.6	/	/	/	/	/	/	/
a	linuxfoundation	yocto	3.3	/	/	/	/	/	/	/
a	linuxfoundation	yocto	4.0	/	/	/	/	/	/	/
a	rdkcentral	rdk-b	2022q3	/	/	/	/	/	/	/
o	google	android	13.0	/	/	/	/	/	/	/
o	google	android	14.0	/	/	/	/	/	/	/
o	openwrt	openwrt	19.07.0	/	/	/	/	/	/	/
o	openwrt	openwrt	21.02	/	/	/	/	/	/	/
o	openwrt	openwrt	22.03.5	/	/	/	/	/	/	/
h	mediatek	mt6580	-	/	/	/	/	/	/	/
h	mediatek	mt6739	-	/	/	/	/	/	/	/
h	mediatek	mt6761	-	/	/	/	/	/	/	/
h	mediatek	mt6765	-	/	/	/	/	/	/	/
h	mediatek	mt6768	-	/	/	/	/	/	/	/
h	mediatek	mt6779	-	/	/	/	/	/	/	/
h	mediatek	mt6781	-	/	/	/	/	/	/	/
h	mediatek	mt6785	-	/	/	/	/	/	/	/
h	mediatek	mt6789	-	/	/	/	/	/	/	/
h	mediatek	mt6833	-	/	/	/	/	/	/	/
h	mediatek	mt6835	-	/	/	/	/	/	/	/
h	mediatek	mt6853	-	/	/	/	/	/	/	/
h	mediatek	mt6855	-	/	/	/	/	/	/	/
h	mediatek	mt6873	-	/	/	/	/	/	/	/
h	mediatek	mt6877	-	/	/	/	/	/	/	/
h	mediatek	mt6879	-	/	/	/	/	/	/	/
h	mediatek	mt6880	-	/	/	/	/	/	/	/
h	mediatek	mt6883	-	/	/	/	/	/	/	/
h	mediatek	mt6885	-	/	/	/	/	/	/	/
h	mediatek	mt6886	-	/	/	/	/	/	/	/
h	mediatek	mt6889	-	/	/	/	/	/	/	/
h	mediatek	mt6890	-	/	/	/	/	/	/	/
h	mediatek	mt6893	-	/	/	/	/	/	/	/
h	mediatek	mt6895	-	/	/	/	/	/	/	/
h	mediatek	mt6897	-	/	/	/	/	/	/	/
h	mediatek	mt6980	-	/	/	/	/	/	/	/
h	mediatek	mt6983	-	/	/	/	/	/	/	/
h	mediatek	mt6985	-	/	/	/	/	/	/	/
h	mediatek	mt6989	-	/	/	/	/	/	/	/
h	mediatek	mt6990	-	/	/	/	/	/	/	/
h	mediatek	mt8183	-	/	/	/	/	/	/	/
h	mediatek	mt8188	-	/	/	/	/	/	/	/
h	mediatek	mt8195	-	/	/	/	/	/	/	/
h	mediatek	mt8390	-	/	/	/	/	/	/	/
h	mediatek	mt8395	-	/	/	/	/	/	/	/
h	mediatek	mt8673	-	/	/	/	/	/	/	/
h	mediatek	mt8675	-	/	/	/	/	/	/	/
h	mediatek	mt8676	-	/	/	/	/	/	/	/
h	mediatek	mt8678	-	/	/	/	/	/	/	/

References

https://corp.mediatek.com/product-security-bulletin/September-2024

CVSS Score

4.4 / 10

CVSS Data

Attack Vector: LOCAL
Attack Complexity: LOW
Privileges Required: HIGH
Scope: UNCHANGED
Confidentiality Impact: HIGH
Integrity Impact: NONE
Availability Impact: NONE

View Vector String

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Date

Published: Sept. 2, 2024, 5:15 a.m.
Last Modified: Sept. 5, 2024, 2:26 p.m.

Status : Analyzed

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@mediatek.com

CVE-2024-20085