SB2024050601 - Multiple vulnerabilities in MediaTek chipsets
Published: May 6, 2024
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 10 secuirty vulnerabilities.
1) Improper input validation (CVE-ID: CVE-2024-20056)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to an insecure default value within preloader. A local privileged application can execute arbitrary code.
2) Out-of-bounds write (CVE-ID: CVE-2024-20057)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within keyInstall. A local privileged application can execute arbitrary code.
3) Out-of-bounds write (CVE-ID: CVE-2023-32873)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within keyInstall. A local privileged application can execute arbitrary code.
4) Unchecked Error Condition (CVE-ID: CVE-2023-32871)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an incorrect status check within DA. A local application can execute arbitrary code.
5) Out-of-bounds read (CVE-ID: CVE-2024-20058)
The vulnerability allows a local privileged application to gain access to sensitive information.
The vulnerability exists due to a missing bounds check within keyInstall. A local privileged application can gain access to sensitive information.
6) Improper Handling of Faults that Lead to Instruction Skips (CVE-ID: CVE-2024-20059)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to an incorrect status check within da. A local privileged application can execute arbitrary code.
7) Improper Handling of Faults that Lead to Instruction Skips (CVE-ID: CVE-2024-20060)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to an incorrect status check within da. A local privileged application can execute arbitrary code.
8) Improper input validation (CVE-ID: CVE-2024-20064)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation within wlan service. A local application can execute arbitrary code.
9) Improper Privilege Management (CVE-ID: CVE-2024-20021)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a logic error within atf spm. A local privileged application can execute arbitrary code.
10) Improper Verification of Cryptographic Signature (CVE-ID: CVE-2023-24023)
The vulnerability allows a remote attacker to perform a MitM attack.
The vulnerability exists due to improper verification of cryptographic signature in bluetooth implementation. A remote attacker with physical proximity to the system can perform MitM attack and potentially compromise the system.
Remediation
Install update from vendor's website.