How severe is CVE-2023-20627?

CVE-2023-20627 has a CVSS v3 score of 6.7 (MEDIUM).

CVE-2023-20627

6.7MEDIUM

In pqframework, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not

Publicado: 3/7/2023Actualizado: 3/6/2025

Descripción

In pqframework, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629585; Issue ID: ALPS07629585.

Análisis IAImpulsado por IA

Productos Afectados

googleandroid

12.0

googleandroid

13.0

mediatekmt6879

mediatekmt6895

mediatekmt6983

mediatekmt8167

mediatekmt8168

Referencias

https://corp.mediatek.com/product-security-bulletin/March-2023
Vendor Advisory
https://corp.mediatek.com/product-security-bulletin/March-2023
Vendor Advisory