SB2024010247 - Multiple vulnerabilities in MediaTek chipsets
Published: January 2, 2024 Updated: April 1, 2024
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 20 secuirty vulnerabilities.
1) Out-of-bounds write (CVE-ID: CVE-2023-32884)
The vulnerability allows a local privileged application to gain access to sensitive information.
The vulnerability exists due to an incorrect bounds check within netdagent. A local privileged application can gain access to sensitive information.
2) Improper input validation (CVE-ID: CVE-2023-32891)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to improper input validation within bluetooth service. A local privileged application can execute arbitrary code.
3) Use of Insufficiently Random Values (CVE-ID: CVE-2023-32831)
The vulnerability allows a local application to gain access to sensitive information.
The vulnerability exists due to use of insufficiently random values within wlan driver. A local application can gain access to sensitive information.
4) NULL Pointer Dereference (CVE-ID: CVE-2023-32890)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to improper input validation within Modem EMM. A local application can perform service disruption.
5) Out-of-bounds write (CVE-ID: CVE-2023-32889)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to a missing bounds check within Modem IMS Call UA. A local application can perform service disruption.
6) Out-of-bounds write (CVE-ID: CVE-2023-32888)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to a missing bounds check within Modem IMS Call UA. A local application can perform service disruption.
7) Stack-based buffer overflow (CVE-ID: CVE-2023-32887)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to a missing bounds check within Modem IMS Stack. A local application can perform service disruption.
8) Out-of-bounds write (CVE-ID: CVE-2023-32886)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to a missing bounds check within Modem IMS SMS UA. A local application can perform service disruption.
9) Memory corruption (CVE-ID: CVE-2023-32885)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within display drm. A local privileged application can execute arbitrary code.
10) Out-of-bounds write (CVE-ID: CVE-2023-32883)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within Engineer Mode. A local privileged application can execute arbitrary code.
11) Out-of-bounds write (CVE-ID: CVE-2023-32872)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within keyInstall. A local privileged application can execute arbitrary code.
12) Out-of-bounds write (CVE-ID: CVE-2023-32882)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within battery. A local privileged application can execute arbitrary code.
13) Integer overflow (CVE-ID: CVE-2023-32881)
The vulnerability allows a local privileged application to gain access to sensitive information.
The vulnerability exists due to an integer overflow within battery. A local privileged application can gain access to sensitive information.
14) Out-of-bounds read (CVE-ID: CVE-2023-32880)
The vulnerability allows a local privileged application to gain access to sensitive information.
The vulnerability exists due to a missing bounds check within battery. A local privileged application can gain access to sensitive information.
15) Out-of-bounds write (CVE-ID: CVE-2023-32879)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within battery. A local privileged application can execute arbitrary code.
16) Out-of-bounds read (CVE-ID: CVE-2023-32878)
The vulnerability allows a local privileged application to gain access to sensitive information.
The vulnerability exists due to a missing bounds check within battery. A local privileged application can gain access to sensitive information.
17) Out-of-bounds write (CVE-ID: CVE-2023-32877)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within battery. A local privileged application can execute arbitrary code.
18) Out-of-bounds read (CVE-ID: CVE-2023-32876)
The vulnerability allows a local privileged application to gain access to sensitive information.
The vulnerability exists due to a missing bounds check within keyInstall. A local privileged application can gain access to sensitive information.
19) Out-of-bounds read (CVE-ID: CVE-2023-32875)
The vulnerability allows a local privileged application to gain access to sensitive information.
The vulnerability exists due to a missing bounds check within keyInstall. A local privileged application can gain access to sensitive information.
20) Out-of-bounds write (CVE-ID: CVE-2023-32874)
The vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to a missing bounds check within Modem IMS Stack. A remote attacker can trick the victim to open a specially crafted file and execute arbitrary code.
Remediation
Install update from vendor's website.