Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
linuxfoundation yocto 4.0 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-20800
In imgsys, there is a possible system crash due to a mssing ptr check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07420968; Issue ID: ALPS07420955.
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
6.4
CVSSv3
CVE-2023-20801
In imgsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07420968; Issue ID: ALPS07420968.
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
6.5
CVSSv3
CVE-2023-20802
In imgsys, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07420968; Issue ID: ALPS07420976.
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
6.5
CVSSv3
CVE-2023-20803
In imgsys, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326374.
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
6.7
CVSSv3
CVE-2023-20804
In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07199773; Issue ID: ALPS07326384.
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
6.7
CVSSv3
CVE-2023-20805
In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07199773; Issue ID: ALPS07326411.
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
7.5
CVSSv3
CVE-2022-32666
In Wi-Fi, there is a possible low throughput due to misrepresentation of critical information. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220829014; Issue ID: GN2022082...
Linuxfoundation Yocto 4.0
Mediatek Mt7603 Firmware 7.6.6.0
Mediatek Mt7613 Firmware 7.6.6.0
Mediatek Mt7615 Firmware 7.6.6.0
Mediatek Mt7622 Firmware 7.6.6.0
Mediatek Mt7628 Firmware 7.6.6.0
Mediatek Mt7629 Firmware 7.6.6.0
Mediatek Mt7915 Firmware 7.6.6.0
Mediatek Mt7916 Firmware 7.6.6.0
Mediatek Mt7981 Firmware 7.6.6.0
Mediatek Mt7986 Firmware 7.6.6.0
Mediatek Mt8365 Firmware 7.6.6.0
1 Github repository
7.5
CVSSv3
CVE-2023-20689
In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664741; Issue ID: ALPS07664741.
Linuxfoundation Yocto 4.0
Google Android 11.0
7.5
CVSSv3
CVE-2023-20690
In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664735; Issue ID: ALPS07664735.
Linuxfoundation Yocto 4.0
Google Android 11.0
Google Android 12.0
7.5
CVSSv3
CVE-2023-20691
In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664731; Issue ID: ALPS07664731.
Linuxfoundation Yocto 4.0
Google Android 11.0
Google Android 12.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »