Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-20689

In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664741; Issue ID: ALPS07664741.

Published

2023-07-04T02:15:09.570

Last Modified

2024-11-21T07:41:21.487

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
CWE-190

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	linuxfoundation	yocto	4.0	Yes
Operating System	google	android	11.0	Yes
Hardware	mediatek	mt6739	-	No
Hardware	mediatek	mt8167	-	No
Hardware	mediatek	mt8321	-	No
Hardware	mediatek	mt8365	-	No
Hardware	mediatek	mt8385	-	No
Hardware	mediatek	mt8666	-	No
Hardware	mediatek	mt8765	-	No
Hardware	mediatek	mt8788	-	No

References

https://corp.mediatek.com/product-security-bulletin/July-2023 Vendor Advisory ([email protected])
https://corp.mediatek.com/product-security-bulletin/July-2023 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)