Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mediatek lr12a - vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2022-21744
In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neighbour Cell Data (PNCD) improper neighbouring cell size with no additional execution privileges needed. User interaction is...
Mediatek Lr11 -
Mediatek Lr12 -
Mediatek Lr12a -
Mediatek Lr13 -
Mediatek Nr15 -
Mediatek Lr9 -
Mediatek Nr16 -
10
CVSSv2
CVE-2022-20083
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY008038...
Mediatek Lr11 -
Mediatek Lr12 -
Mediatek Lr12a -
Mediatek Lr13 -
Mediatek Nr15 -
Mediatek Lr9 -
Mediatek Nr16 -
7.8
CVSSv2
CVE-2021-32484
In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500621; Issue ID: ALPS04964917.
Mediatek Modem Lr12a
Mediatek Modem Lr13
7.8
CVSSv2
CVE-2021-32486
In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500621; Issue ID: ALPS04964928.
Mediatek Modem Lr12a
Mediatek Modem Lr13
7.8
CVSSv2
CVE-2021-32487
In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500736; Issue ID: ALPS04938456.
Mediatek Modem Lr12a
Mediatek Modem Lr13
7.8
CVSSv2
CVE-2021-32485
In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500621; Issue ID: ALPS04964926.
Mediatek Modem Lr12a
Mediatek Modem Lr13
5
CVSSv2
CVE-2021-40148
In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886...
Mediatek L9
Mediatek Lr11 -
Mediatek Lr12 -
Mediatek Lr12a -
Mediatek Lr13 -
Mediatek Nr15 -
NA
CVE-2023-32840
In modem CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction may be also needed for exploitation Patch ID: MOLY01138425; Issue ID: MOLY01138425 (MSV...
Mediatek Lr12a -
Mediatek Nr15 -
Mediatek Nr16 -
Mediatek Nr17 -
NA
CVE-2023-20819
In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privilege needed. User interaction is not needed for exploitation. Patch ID: MOLY01068234; Issue ID: ALPS080...
Mediatek Lr11 -
Mediatek Lr12a -
Mediatek Lr13 -
Mediatek Nr15 -
Mediatek Nr16 -
Mediatek Nr17 -
NA
CVE-2022-26446
In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when concatenating improper SIB12 (CMAS message), with no additional execution privileges needed. User interaction is not needed for exploitation. Patc...
Mediatek Lr12a -
Mediatek Lr13 -
Mediatek Nr15 -
Mediatek Nr16 -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started