Today > 1 Critical | 2 High | 2 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-20129

Dec. 2, 2024, 4:15 a.m.

Tags

CWE-125
security@mediatek.com
2024-12-02
CVE-2024-20129

Product(s) Impacted

Telephony

Description

In Telephony, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09289881; Issue ID: MSV-2025.

Weaknesses

CWE-125
Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

CWE ID: 125

Date

Published: Dec. 2, 2024, 4:15 a.m.

Last Modified: Dec. 2, 2024, 4:15 a.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@mediatek.com

References

https://corp.mediatek.com/ security@mediatek.com