Vulnerabilities > Mediatek > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-06 CVE-2021-31576 Missing Authorization vulnerability in Mediatek En7528 Firmware and En7580 Firmware
In Boa, there is a possible information disclosure due to a missing permission check.
network
low complexity
mediatek CWE-862
7.5
7.5
2023-02-06 CVE-2022-32663 NULL Pointer Dereference vulnerability in Mediatek products
In Wi-Fi driver, there is a possible system crash due to null pointer dereference.
network
low complexity
mediatek CWE-476
7.5
7.5
2023-01-03 CVE-2022-32664 Command Injection vulnerability in Mediatek Linkit Software Development KIT 4.6.1
In Config Manager, there is a possible command injection due to improper input validation.
network
low complexity
mediatek CWE-77
8.8
8.8
2022-11-08 CVE-2022-26446 Reachable Assertion vulnerability in Mediatek products
In Modem 4G RRC, there is a possible system crash due to improper input validation.
network
low complexity
mediatek CWE-617
7.5
7.5
2022-01-04 CVE-2021-40148 Cleartext Transmission of Sensitive Information vulnerability in Mediatek products
In Modem EMM, there is a possible information disclosure due to a missing data encryption.
network
low complexity
mediatek CWE-319
7.5
7.5
2021-12-26 CVE-2021-32467 Out-of-bounds Read vulnerability in Mediatek products
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol.
network
low complexity
mediatek CWE-125
7.5
7.5
2021-12-26 CVE-2021-32468 Out-of-bounds Read vulnerability in Mediatek products
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol.
network
low complexity
mediatek CWE-125
7.5
7.5
2021-12-26 CVE-2021-32469 Out-of-bounds Read vulnerability in Mediatek products
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol.
network
low complexity
mediatek CWE-125
7.5
7.5
2021-12-26 CVE-2021-35055 Out-of-bounds Write vulnerability in Mediatek products
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol.
network
low complexity
mediatek CWE-787
8.8
8.8
2021-12-26 CVE-2021-37560 Out-of-bounds Write vulnerability in Mediatek products
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol.
network
low complexity
mediatek CWE-787
8.8
8.8