Out of Bounds Read Vulnerability in MediaTek Product
CVE-2023-20843
4.2MEDIUM
Key Information:
- Vendor
MediaTek
- Vendor
- CVE Published:
- 4 September 2023
What is CVE-2023-20843?
A vulnerability exists in imgsys_cmdq that permits an out of bounds read due to inadequate range checking. This flaw can potentially lead to local information disclosure, but it requires system execution privileges and user interaction for exploitation. Appropriate measures should be taken to mitigate this issue, as highlighted in the MediaTek security bulletin.
Affected Version(s)
MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0