Possible Out of Bounds Read Leads to Local Denial of Service
CVE-2024-20112

Currently unrated

Key Information:

Vendor: MediaTek
Status: Mt6878, Mt6886, Mt6897, Mt6985, Mt8676
Vendor: CVE Published:; 4 November 2024

What is CVE-2024-20112?

In isp, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09071481; Issue ID: MSV-1730.

Affected Version(s)

MT6878, MT6886, MT6897, MT6985, MT8676 Android 13.0, 14.0

References

https://corp.mediatek.com/product-security-bulletin/Novem...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2024
Vulnerability Reserved
Nov 2, 2023

MediaTek

What is CVE-2024-20112?

Affected Version(s)

References

Timeline