CVE-2021-32487

7.5HIGH

Key Information:

Vendor: Mediatek
Status: Modem
Vendor: CVE Published:; 9 September 2021

Summary

In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500736; Issue ID: ALPS04938456.

References

https://corp.mediatek.com/product-security-bulletin/Septe...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 9, 2021
Vulnerability Reserved
May 10, 2021