FKIE_CVE-2024-20103

Vulnerability from fkie_nvd - Published: 2024-10-07 03:15 - Updated: 2025-04-24 15:06
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001358; Issue ID: MSV-1599.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/October-2024Vendor Advisory
Impacted products
Vendor Product Version
mediatek software_development_kit *
google android 13.0
google android 14.0
google android 15.0
mediatek mt3605 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6990 -
mediatek mt7927 -
mediatek mt8183 -
mediatek mt8512 -
mediatek mt8678 -
mediatek mt8695 -
mediatek mt8698 -
mediatek mt8796 -
mediatek mt8893 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mediatek:software_development_kit:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "717EE6D8-BCB9-4F8B-AC18-5B2CD6F847CC",
              "versionEndIncluding": "3.3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt3605:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F897E19-008E-4DC8-B4CB-BF27044B9F5C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1A76806D-A4E3-466A-90CB-E9FFE478E7A0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt7927:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "05525018-AFE0-415C-A71C-A77922C7D637",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23F65D7B-31A1-4D94-82E9-254A7A6D7BE1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8512:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3E51B721-CBDD-4223-ACD1-509E82D1B4A2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B5126E05-25DC-4EF7-8DDE-BBA38A7547FB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8698:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A8B1C43-5770-440F-8015-3BBBD7AF8386",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFAADB1-C2B2-47A6-BB66-761B964E7DFB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001358; Issue ID: MSV-1599."
    },
    {
      "lang": "es",
      "value": "En el firmware de WLAN, existe la posibilidad de una escritura fuera de los l\u00edmites debido a una validaci\u00f3n de entrada incorrecta. Esto podr\u00eda provocar la ejecuci\u00f3n remota de c\u00f3digo sin necesidad de privilegios de ejecuci\u00f3n adicionales. No se necesita interacci\u00f3n del usuario para la explotaci\u00f3n. ID de parche: ALPS09001358; ID de problema: MSV-1599."
    }
  ],
  "id": "CVE-2024-20103",
  "lastModified": "2025-04-24T15:06:32.527",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-10-07T03:15:03.500",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/October-2024"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.