Remote Denial of Service Vulnerability in Modem 4G RRC by MediaTek
CVE-2022-26446
Key Information:
- Vendor
MediaTek
- Vendor
- CVE Published:
- 8 November 2022
What is CVE-2022-26446?
A vulnerability exists in the Modem 4G RRC due to insufficient input validation, which may result in a system crash. This vulnerability allows an attacker to exploit the system remotely via improperly concatenated SIB12 (CMAS message) messages, causing a denial of service without requiring any user interaction. The issue can be addressed through the application of specific patches, such as Patch ID: MOLY00867883.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
MT2731, MT2735, MT6297, MT6725, MT6739, MT6761, MT6762, MT6762D, MT6762M, MT6763, MT6765, MT6765T, MT6767, MT6768, MT6769, MT6769T, MT6769Z, MT6771, MT6779, MT6781, MT6783, MT6785, MT6785T, MT6789, MT6833, MT6853, MT6855, MT6873, MT6875, MT6877, MT6879, MT6880, MT6883, MT6885, MT6889, MT6890, MT6891, MT6893, MT6895, MT6983, MT8385, MT8666, MT8667, MT8675, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8797 Modem LR12A, LR13, NR15, NR16
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved