CVE-2023-20745

In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07560694.

CVSS v3 6.7 MEDIUM

6.7^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://corp.mediatek.com/product-security-bulletin/June-2023	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:linuxfoundation:iot-yocto:22.2:::::::*
	cpe:2.3:a:linuxfoundation:yocto:4.0:::::::*
	cpe:2.3:o:google:android:12.0:::::::*
	cpe:2.3:o:google:android:13.0:::::::*

OR	cpe:2.3:h:mediatek:mt6789:-:::::::*
	cpe:2.3:h:mediatek:mt6855:-:::::::*
	cpe:2.3:h:mediatek:mt8185:-:::::::*
	cpe:2.3:h:mediatek:mt8195:-:::::::*
	cpe:2.3:h:mediatek:mt8365:-:::::::*
	cpe:2.3:h:mediatek:mt8395:-:::::::*
	cpe:2.3:h:mediatek:mt8781:-:::::::*
	cpe:2.3:h:mediatek:mt8786:-:::::::*
	cpe:2.3:h:mediatek:mt8789:-:::::::*
	cpe:2.3:h:mediatek:mt8791:-:::::::*
	cpe:2.3:h:mediatek:mt8797:-:::::::*

History

No history.

Information

Published : 2023-06-06 13:15

Updated : 2023-06-09 03:53

NVD link : CVE-2023-20745

Mitre link : CVE-2023-20745

CVE.ORG link : CVE-2023-20745

JSON object : View

Products Affected

mediatek

mt8786
mt8797
mt8789
mt8195
mt8791
mt8365
mt8395
mt6789
mt6855
mt8781
mt8185

google

android

linuxfoundation

yocto
iot-yocto

CWE

CWE-667

Improper Locking

{"id": "CVE-2023-20745", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.8}]}, "published": "2023-06-06T13:15:14.563", "references": [{"url": "https://corp.mediatek.com/product-security-bulletin/June-2023", "tags": ["Vendor Advisory"], "source": "security@mediatek.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-667"}]}], "descriptions": [{"lang": "en", "value": "In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07560694."}], "lastModified": "2023-06-09T03:53:07.380", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:linuxfoundation:iot-yocto:22.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B20DD930-83A1-4715-AD51-458ECA2578D8"}, {"criteria": "cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "437D8F9D-67DF-47A5-9C96-5B51D1562951"}, {"criteria": "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8FB8EE9-FC56-4D5E-AE55-A5967634740C"}, {"criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49"}, {"criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A"}, {"criteria": "cpe:2.3:h:mediatek:mt8185:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "62FDE8E0-FD9F-4D2B-944C-E17F34A09F06"}, {"criteria": "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ED210E64-6CE7-42B1-849E-68C0E22521F6"}, {"criteria": "cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "97C76F98-5D8D-4E52-ABAF-CD27C1205B0E"}, {"criteria": "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D98FBE1C-D57B-49D9-9C4E-8A133A0C1C89"}, {"criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41"}, {"criteria": "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6"}, {"criteria": "cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1505AD53-987E-4328-8E1D-F5F1EC12B677"}, {"criteria": "cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9CD2C3EC-B62D-4616-964F-FDBE5B14A449"}, {"criteria": "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2B469BF4-5961-42E9-814B-1BE06D182E45"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "security@mediatek.com"}