Vulnerabilities > Mediatek > IOT Yocto > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-09-04 CVE-2023-20846 Out-of-bounds Read vulnerability in multiple products
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking.
4.2
2023-09-04 CVE-2023-20847 Out-of-bounds Read vulnerability in multiple products
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking.
4.2
2023-09-04 CVE-2023-20848 Out-of-bounds Read vulnerability in multiple products
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking.
6.5
2023-09-04 CVE-2023-20849 Use After Free vulnerability in multiple products
In imgsys_cmdq, there is a possible use after free due to a missing valid range checking.
6.5
2023-09-04 CVE-2023-20850 Out-of-bounds Write vulnerability in multiple products
In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking.
6.5
2023-09-04 CVE-2023-32806 Out-of-bounds Write vulnerability in multiple products
In wlan driver, there is a possible out of bounds write due to improper input validation.
6.7
2023-09-04 CVE-2023-32807 Out-of-bounds Read vulnerability in multiple products
In wlan service, there is a possible out of bounds read due to improper input validation.
local
low complexity
linuxfoundation mediatek google CWE-125
4.4
2023-09-04 CVE-2023-32811 Out-of-bounds Write vulnerability in multiple products
In connectivity system driver, there is a possible out of bounds write due to improper input validation.
local
low complexity
linuxfoundation mediatek google CWE-787
6.7
2023-08-07 CVE-2023-20812 Out-of-bounds Write vulnerability in multiple products
In wlan driver, there is a possible out of bounds write due to improper input validation.
local
low complexity
mediatek google CWE-787
4.4
2023-05-15 CVE-2023-20673 Type Confusion vulnerability in multiple products
In vcu, there is a possible memory corruption due to type confusion.
local
low complexity
mediatek google CWE-843
6.7