Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-20019

In wlan driver, there is a possible memory leak due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00351241; Issue ID: MSV-1173.

Published

2024-03-04T03:15:07.060

Last Modified

2025-05-05T17:54:32.670

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.9 (MEDIUM)

Weaknesses

Type: Secondary
CWE-200

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mediatek	software_package	≤ 2023.11.10	Yes
Hardware	mediatek	mt7925	-	No
Hardware	mediatek	mt7927	-	No

References

https://corp.mediatek.com/product-security-bulletin/March-2024 Vendor Advisory ([email protected])
https://corp.mediatek.com/product-security-bulletin/March-2024 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)