Out of Bounds Write Vulnerability in Preloader for MediaTek Products
CVE-2023-20694

6.7MEDIUM

Key Information:

Vendor
MediaTek
Status
Mt6580, Mt6739, Mt6761, Mt6765, Mt6768, Mt6769, Mt6771, Mt6779, Mt6785, Mt6789, Mt6853, Mt6855, Mt6873, Mt6879, Mt6880, Mt6885, Mt6890, Mt6895, Mt6983, Mt8167, Mt8175, Mt8185, Mt8195, Mt8321, Mt8365, Mt8385, Mt8395, Mt8666, Mt8667, Mt8673, Mt8675, Mt8765, Mt8766, Mt8768, Mt8781, Mt8786, Mt8788, Mt8789, Mt8791, Mt8791t, Mt8797
Vendor
CVE Published:
15 May 2023

Summary

A security flaw in the Preloader of MediaTek devices can allow for an out of bounds write due to insufficient bounds checking. This vulnerability could potentially enable local escalation of privileges, granting unauthorized access to system-level execution. Notably, this issue does not require user interaction for exploitation, making it particularly concerning. MediaTek has released patches under IDs ALPS07733998 and ALPS07874388 specifically for the vulnerable MT6880 and MT6890 models, highlighting the importance of updating affected devices to mitigate security risks.

Affected Version(s)

MT6580, MT6739, MT6761, MT6765, MT6768, MT6769, MT6771, MT6779, MT6785, MT6789, MT6853, MT6855, MT6873, MT6879, MT6880, MT6885, MT6890, MT6895, MT6983, MT8167, MT8175, MT8185, MT8195, MT8321, MT8365, MT8385, MT8395, MT8666, MT8667, MT8673, MT8675, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8797 Android 12.0, 13.0 / OpenWrt 19.07, 21.02

References

https://corp.mediatek.com/product-security-bulletin/May-2023

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.