How severe is CVE-2023-20746?

CVE-2023-20746 has a CVSS v3 score of 6.7 (MEDIUM).

CVE-2023-20746

6.7MEDIUM

In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ex

Publicado: 6/6/2023Atualizado: 1/7/2025

Descrição

In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519217.

Análise IADesenvolvido por IA

Produtos Afetados

linuxfoundationiot-yocto

22.2

linuxfoundationyocto

4.0

googleandroid

12.0

googleandroid

13.0

mediatekmt6789

mediatekmt6855

mediatekmt8167

mediatekmt8168

mediatekmt8173

mediatekmt8185

mediatekmt8195

mediatekmt8321

mediatekmt8365

mediatekmt8395

mediatekmt8765

mediatekmt8766

mediatekmt8768

mediatekmt8781

mediatekmt8786

mediatekmt8788

mediatekmt8789

mediatekmt8791

mediatekmt8791t

mediatekmt8797

Referências

https://corp.mediatek.com/product-security-bulletin/June-2023
Vendor Advisory
https://corp.mediatek.com/product-security-bulletin/June-2023
Vendor Advisory