In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID: MSV-1796.
2025-01-06T04:15:07.077
2025-04-22T13:50:16.450
Analyzed
CVSSv3.1: 9.8 (CRITICAL)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | linuxfoundation | yocto | 3.3 | Yes |
| Application | linuxfoundation | yocto | 4.0 | Yes |
| Application | linuxfoundation | yocto | 5.0 | Yes |
| Application | mediatek | software_development_kit | ≤ 2.4 | Yes |
| Operating System | android | 13.0 | Yes | |
| Operating System | android | 14.0 | Yes | |
| Operating System | android | 15.0 | Yes | |
| Hardware | mediatek | mt3603 | - | No |
| Hardware | mediatek | mt6835 | - | No |
| Hardware | mediatek | mt6878 | - | No |
| Hardware | mediatek | mt6886 | - | No |
| Hardware | mediatek | mt6897 | - | No |
| Hardware | mediatek | mt7902 | - | No |
| Hardware | mediatek | mt7920 | - | No |
| Hardware | mediatek | mt7922 | - | No |
| Hardware | mediatek | mt8518s | - | No |
| Hardware | mediatek | mt8532 | - | No |
| Hardware | mediatek | mt8766 | - | No |
| Hardware | mediatek | mt8768 | - | No |
| Hardware | mediatek | mt8775 | - | No |
| Hardware | mediatek | mt8796 | - | No |
| Hardware | mediatek | mt8798 | - | No |