CVE-2024-20047 Vulnerability Details
/
/
/
CVE-2024-20047 Metadata Quick Info
CVE Published: 01/04/2024 |
CVE Updated: 07/11/2024 |
CVE Year: 2024
Source: MediaTek |
Vendor: MediaTek, Inc. |
Product: MT6739, MT6768, MT6781, MT6833, MT6853, MT6877, MT6883, MT6885, MT6893, MT8183, MT8188, MT8765, MT8766, MT8768, MT8786, MT8788, MT8791, MT8797
Status : PUBLISHED
CVE-2024-20047 Description
In battery, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08587865; Issue ID: ALPS08486807.
Metrics
CVSS Version: 3.1 |
Base Score: n/a
Vector: n/a
l➤ Exploitability Metrics: Attack Vector (AV)* Attack Complexity (AC)* Privileges Required (PR)* User Interaction (UI)* Scope (S)* l➤ Impact Metrics: Confidentiality Impact (C)* Integrity Impact (I)* Availability Impact (A)* Weakness Enumeration (CWE)
CWE-ID: CWE Name: Information Disclosure Source: MediaTek, Inc. Common Attack Pattern Enumeration and Classification (CAPEC)
CAPEC-ID: CAPEC Description:
Source: NVD (National Vulnerability Database).