SB2024110402 - Multiple vulnerabilities in MediaTek chipsets

Main Vulnerability Database SB2024110402

SB2024110402 - Multiple vulnerabilities in MediaTek chipsets

Published: November 4, 2024

Security Bulletin ID SB2024110402

Severity

Low

Patch available

YES

Number of vulnerabilities 19

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 19 secuirty vulnerabilities.

1) Out-of-bounds read (CVE-ID: CVE-2024-20117)

The vulnerability allows a local privileged application to gain access to sensitive information.

The vulnerability exists due to improper structure design within vdec. A local privileged application can gain access to sensitive information.

2) Out-of-bounds read (CVE-ID: CVE-2024-20124)

The vulnerability allows a local privileged application to gain access to sensitive information.

The vulnerability exists due to improper structure design within vdec. A local privileged application can gain access to sensitive information.

3) Out-of-bounds read (CVE-ID: CVE-2024-20123)

The vulnerability allows a local privileged application to gain access to sensitive information.

The vulnerability exists due to improper structure design within vdec. A local privileged application can gain access to sensitive information.

4) Out-of-bounds read (CVE-ID: CVE-2024-20122)

The vulnerability allows a local privileged application to gain access to sensitive information.

The vulnerability exists due to improper structure design within vdec. A local privileged application can gain access to sensitive information.

5) Out-of-bounds write (CVE-ID: CVE-2024-20121)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within KeyInstall. A local privileged application can execute arbitrary code.

6) Out-of-bounds write (CVE-ID: CVE-2024-20120)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within KeyInstall. A local privileged application can execute arbitrary code.

7) Write-what-where Condition (CVE-ID: CVE-2024-20119)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to an incorrect bounds check within mms. A local privileged application can execute arbitrary code.

8) Write-what-where Condition (CVE-ID: CVE-2024-20118)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to an incorrect bounds check within mms. A local privileged application can execute arbitrary code.

9) Out-of-bounds write (CVE-ID: CVE-2024-20115)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within ccu. A local privileged application can execute arbitrary code.

10) Out-of-bounds write (CVE-ID: CVE-2024-20104)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within DA. A local application can execute arbitrary code.

11) Out-of-bounds write (CVE-ID: CVE-2024-20114)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within ccu. A local privileged application can execute arbitrary code.

12) Out-of-bounds write (CVE-ID: CVE-2024-20113)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within ccu. A local privileged application can execute arbitrary code.

13) Out-of-bounds read (CVE-ID: CVE-2024-20112)

The vulnerability allows a local privileged application to perform service disruption.

The vulnerability exists due to a missing bounds check within isp. A local privileged application can perform service disruption.

14) Out-of-bounds write (CVE-ID: CVE-2024-20111)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within ccu. A local privileged application can execute arbitrary code.

15) Out-of-bounds write (CVE-ID: CVE-2024-20110)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within ccu. A local privileged application can execute arbitrary code.

16) Out-of-bounds write (CVE-ID: CVE-2024-20109)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within ccu. A local privileged application can execute arbitrary code.

17) Out-of-bounds write (CVE-ID: CVE-2024-20108)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within atci. A local privileged application can execute arbitrary code.

18) Out-of-bounds read (CVE-ID: CVE-2024-20107)

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to a missing bounds check within DA. A local application can gain access to sensitive information.

19) Type confusion (CVE-ID: CVE-2024-20106)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within m4u. A local privileged application can execute arbitrary code.

Remediation

Install update from vendor's website.

References

https://corp.mediatek.com/product-security-bulletin/November-2024

Vulnerable Software