In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead to remote denial of service, if UE received invalid 1-byte rlc sdu, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00921261; Issue ID: MOLY01128895.
References
Link | Resource |
---|---|
https://corp.mediatek.com/product-security-bulletin/November-2023 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
05 Sep 2024, 16:35
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-06 04:15
Updated : 2024-09-05 16:35
NVD link : CVE-2023-20702
Mitre link : CVE-2023-20702
CVE.ORG link : CVE-2023-20702
JSON object : View
Products Affected
mediatek
- mt6883
- mt6990
- nr15
- mt6886
- mt8791
- mt8797
- mt8798
- mt6875
- mt8675
- nr16
- mt6885
- mt6873
- mt6889
- mt6985
- mt6895
- mt6983
- mt6879
- mt6980
- mt6835
- nr17
- mt8673
- mt8791t
CWE