Local Privilege Escalation in MediaTek Search Engine Service
CVE-2022-20072
Key Information:
- Vendor
MediaTek
- Vendor
- CVE Published:
- 11 April 2022
What is CVE-2022-20072?
A vulnerability exists in the search engine service of MediaTek products, allowing attackers to manipulate the default search engine due to an incorrect comparison mechanism. This flaw can lead to local privilege escalation, granting unauthorized system execution privileges without requiring user interaction. It is crucial for users and administrators to apply patches and remain vigilant against potential exploits of this nature.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
MT6580, MT6735, MT6737, MT6739, MT6753, MT6755, MT6755S, MT6761, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6795, MT6797, MT6799, MT6833, MT6853, MT6853T, MT6873, MT6875, MT6877, MT6879, MT6880, MT6883, MT6885, MT6889, MT6890, MT6891, MT6893, MT6895, MT6983, MT6985, MT8167, MT8167S, MT8168, MT8173, MT8175, MT8183, MT8185, MT8321, MT8362A, MT8365, MT8385, MT8675, MT8765, MT8766, MT8768, MT8786, MT8788, MT8791, MT8797 Android 11.0, 12.0
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved