Out of Bounds Read Vulnerability in Mediatek Wireless LAN Product
CVE-2023-20729
4.4MEDIUM
Key Information:
- Vendor
MediaTek
- Vendor
- CVE Published:
- 6 June 2023
What is CVE-2023-20729?
A vulnerability exists in Mediatek's WLAN that allows for a possible out of bounds read due to a missing bounds check. This flaw can lead to local information disclosure, requiring system execution privileges for exploitation. Notably, user interaction is not necessary for this vulnerability to be exploited. Mediatek has issued patches for this issue under Patch ID ALPS07573552 and Issue ID ALPS07573575.
Affected Version(s)
MT6985, MT7902, MT7921, MT8365, MT8518, MT8532 Android 13.0 / Yocto 3.1, 3.3, 4.0