Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-20707


In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628556; Issue ID: ALPS07628556.


Published

2023-05-15T22:15:10.993

Last Modified

2025-01-24T20:15:28.073

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-20
  • Type: Secondary
    CWE-1284

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System google android 12.0 Yes
Operating System google android 13.0 Yes
Hardware mediatek mt6735 - No
Hardware mediatek mt6737 - No
Hardware mediatek mt6739 - No
Hardware mediatek mt6753 - No
Hardware mediatek mt6757 - No
Hardware mediatek mt6757c - No
Hardware mediatek mt6757cd - No
Hardware mediatek mt6757ch - No
Hardware mediatek mt6761 - No
Hardware mediatek mt6762 - No
Hardware mediatek mt6763 - No
Hardware mediatek mt6765 - No
Hardware mediatek mt6768 - No
Hardware mediatek mt6769 - No
Hardware mediatek mt6771 - No
Hardware mediatek mt6779 - No
Hardware mediatek mt6781 - No
Hardware mediatek mt6785 - No
Hardware mediatek mt6789 - No
Hardware mediatek mt6833 - No
Hardware mediatek mt6853 - No
Hardware mediatek mt6853t - No
Hardware mediatek mt6855 - No
Hardware mediatek mt6873 - No
Hardware mediatek mt6875 - No
Hardware mediatek mt6877 - No
Hardware mediatek mt6879 - No
Hardware mediatek mt6883 - No
Hardware mediatek mt6885 - No
Hardware mediatek mt6889 - No
Hardware mediatek mt6891 - No
Hardware mediatek mt6893 - No
Hardware mediatek mt6895 - No
Hardware mediatek mt8321 - No
Hardware mediatek mt8765 - No
Hardware mediatek mt8766 - No
Hardware mediatek mt8768 - No
Hardware mediatek mt8781 - No
Hardware mediatek mt8786 - No
Hardware mediatek mt8788 - No
Hardware mediatek mt8789 - No
Hardware mediatek mt8791t - No

References