Possible Out of Bounds Read Vulnerability in cmdq Could Lead to Local Information Disclosure
CVE-2024-20116
Key Information:
- Vendor
MediaTek
- Vendor
- CVE Published:
- 2 December 2024
What is CVE-2024-20116?
A notable vulnerability exists in MediaTek's cmdq component, identified as an out of bounds read due to an insufficient bounds check. This flaw can potentially allow for the disclosure of local information, requiring system execution privileges for exploitation. Importantly, this vulnerability does not necessitate any user interaction, making it a particularly concerning issue for affected systems. Remediation efforts and patches are advised to mitigate the risk posed by this vulnerability.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT8765, MT8766, MT8768, MT8771, MT8781, MT8786, MT8788, MT8789, MT8791T, MT8795T, MT8797, MT8798 Android 12.0