5G NRLC Remote Denial of Service Vulnerability in MediaTek Products
CVE-2023-20702

7.5HIGH

Key Information:

Vendor: MediaTek
Status: Mt6835, Mt6873, Mt6875, Mt6879, Mt6883, Mt6885, Mt6886, Mt6889, Mt6895, Mt6980, Mt6983, Mt6985, Mt6990, Mt8673, Mt8675, Mt8791, Mt8791t, Mt8797, Mt8798
Vendor: CVE Published:; 6 November 2023

Summary

A significant vulnerability exists in MediaTek's 5G NRLC that allows for potential remote denial of service due to inadequate error handling during memory access. This flaw arises when the User Equipment (UE) processes an invalid 1-byte RLC Service Data Unit (SDU). Notably, exploitation of this vulnerability does not require any special execution privileges or user interaction, making it particularly concerning for device stability. Affected users should consider applying the available patches as outlined in the MediaTek product security bulletin.

Affected Version(s)

MT6835, MT6873, MT6875, MT6879, MT6883, MT6885, MT6886, MT6889, MT6895, MT6980, MT6983, MT6985, MT6990, MT8673, MT8675, MT8791, MT8791T, MT8797, MT8798 Modem NR15, NR16, NR17

References

https://corp.mediatek.com/product-security-bulletin/Novem...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 6, 2023
Vulnerability Reserved
Oct 28, 2022