In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead to remote denial of service, if UE received invalid 1-byte rlc sdu, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00921261; Issue ID: MOLY01128895.
References
| Link | Resource |
|---|---|
| https://corp.mediatek.com/product-security-bulletin/November-2023 | Vendor Advisory |
| https://corp.mediatek.com/product-security-bulletin/November-2023 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
21 Nov 2024, 07:41
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://corp.mediatek.com/product-security-bulletin/November-2023 - Vendor Advisory |
05 Sep 2024, 16:35
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-11-06 04:15
Updated : 2024-11-21 07:41
NVD link : CVE-2023-20702
Mitre link : CVE-2023-20702
CVE.ORG link : CVE-2023-20702
JSON object : View
Products Affected
mediatek
- mt6886
- mt6980
- mt6879
- mt8675
- mt6889
- mt6895
- mt6883
- mt8798
- mt8797
- nr15
- nr16
- mt6983
- mt8791t
- mt6835
- nr17
- mt8791
- mt8673
- mt6873
- mt6985
- mt6875
- mt6885
- mt6990
CWE