Vulnerability identifier: #VU72932
Vulnerability risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-122
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
MT6739
Mobile applications /
Mobile firmware & hardware
MT6761
Mobile applications /
Mobile firmware & hardware
MT6762
Mobile applications /
Mobile firmware & hardware
MT6762D
Mobile applications /
Mobile firmware & hardware
MT6762M
Mobile applications /
Mobile firmware & hardware
MT6763
Mobile applications /
Mobile firmware & hardware
MT6765
Mobile applications /
Mobile firmware & hardware
MT6765T
Mobile applications /
Mobile firmware & hardware
MT6767
Mobile applications /
Mobile firmware & hardware
MT6768
Mobile applications /
Mobile firmware & hardware
MT6769
Mobile applications /
Mobile firmware & hardware
MT6769T
Mobile applications /
Mobile firmware & hardware
MT6769Z
Mobile applications /
Mobile firmware & hardware
MT6771
Mobile applications /
Mobile firmware & hardware
MT6783
Mobile applications /
Mobile firmware & hardware
MT6785T
Mobile applications /
Mobile firmware & hardware
MT6779
Hardware solutions /
Firmware
MT6785
Hardware solutions /
Firmware
Vendor: MediaTek
Description
The vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to a heap buffer overflow within Modem 2G RRM. A remote attacker can trick the victim to open a specially crafted file and execute arbitrary code.
Mitigation
Install security update from vendor's website.
Vulnerable software versions
MT6739: All versions
MT6761: All versions
MT6762: All versions
MT6762D: All versions
MT6762M: All versions
MT6763: All versions
MT6765: All versions
MT6765T: All versions
MT6767: All versions
MT6768: All versions
MT6769: All versions
MT6769T: All versions
MT6769Z: All versions
MT6771: All versions
MT6779: All versions
MT6783: All versions
MT6785: All versions
MT6785T: All versions
External links
http://corp.mediatek.com/product-security-bulletin/September-2021
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.