How severe is CVE-2023-20745?

CVE-2023-20745 has a CVSS v3 score of 6.7 (MEDIUM).

CVE-2023-20745

6.7MEDIUM

In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ex

Publicado: 6/6/2023Actualizado: 1/7/2025

Descripción

In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07560694.

Análisis IAImpulsado por IA

Productos Afectados

linuxfoundationiot-yocto

22.2

linuxfoundationyocto

4.0

googleandroid

12.0

googleandroid

13.0

mediatekmt6789

mediatekmt6855

mediatekmt8185

mediatekmt8195

mediatekmt8365

mediatekmt8395

mediatekmt8781

mediatekmt8786

mediatekmt8789

mediatekmt8791

mediatekmt8797

Referencias

https://corp.mediatek.com/product-security-bulletin/June-2023
Vendor Advisory
https://corp.mediatek.com/product-security-bulletin/June-2023
Vendor Advisory