Vulnerabilities > Mediatek > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-06 | CVE-2022-21744 | Out-of-bounds Write vulnerability in Mediatek products In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. | 9.8 |
| 2022-01-24 | CVE-2021-30636 | Integer Overflow or Wraparound vulnerability in Mediatek Linkit Software Development KIT In MediaTek LinkIt SDK before 4.6.1, there is a possible memory corruption due to an integer overflow during mishandled memory allocation by pvPortCalloc and pvPortRealloc. | 9.8 |
| 2019-08-14 | CVE-2019-15027 | OS Command Injection vulnerability in Mediatek Mt6577 Firmware, Mt6625 Firmware and Mt8163 Firmware The MediaTek Embedded Multimedia Card (eMMC) subsystem for Android on MT65xx, MT66xx, and MT8163 SoC devices allows attackers to execute arbitrary commands as root via shell metacharacters in a filename under /data, because clear_emmc_nomedia_entry in platform/mt6577/external/meta/emmc/meta_clr_emmc.c invokes 'system("/system/bin/rm -r /data/' followed by this filename upon an eMMC clearance from a Meta Mode boot. | 9.8 |