Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-20808


In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895.


Published

2023-08-07T04:15:14.180

Last Modified

2024-11-21T07:41:34.223

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-787

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System google android 11.0 Yes
Hardware mediatek mt9011 - No
Hardware mediatek mt9022 - No
Hardware mediatek mt9618 - No
Hardware mediatek mt9649 - No
Hardware mediatek mt9653 - No

References