CVE-2023-20809 - Vulnerability Details

Description

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03751198; Issue ID: DTV03751198.

Published: 2023-08-07

Score: 6.7 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

MediaTek, Inc.

MT5583, MT5691, MT5695, MT9010, MT9011, MT9012, MT9016, MT9020, MT9021, MT9022, MT9030, MT9031, MT9032, MT9215, MT9216, MT9218, MT9220, MT9221, MT9222, MT9255, MT9256, MT9266, MT9269, MT9285, MT9286, MT9288, MT9600, MT9602, MT9610, MT9611, MT9612, MT9613, MT9615, MT9617, MT9629, MT9630, MT9631, MT9632, MT9636, MT9638, MT9639, MT9650, MT9652, MT9666, MT9667, MT9669, MT9670, MT9671, MT9675, MT9685, MT9686, MT9688

affected

Version	Status	Constraints
`Android 10.0, 11.0`	affected	—

Configuration 1 [-]

AND

OR	cpe:2.3:o:google:android:10.0:::::::*
	cpe:2.3:o:google:android:11.0:::::::*

OR	cpe:2.3:h:mediatek:mt5583:-:::::::*
	cpe:2.3:h:mediatek:mt5691:-:::::::*
	cpe:2.3:h:mediatek:mt5695:-:::::::*
	cpe:2.3:h:mediatek:mt9010:-:::::::*
	cpe:2.3:h:mediatek:mt9011:-:::::::*
	cpe:2.3:h:mediatek:mt9012:-:::::::*
	cpe:2.3:h:mediatek:mt9016:-:::::::*
	cpe:2.3:h:mediatek:mt9020:-:::::::*
	cpe:2.3:h:mediatek:mt9021:-:::::::*
	cpe:2.3:h:mediatek:mt9022:-:::::::*
	cpe:2.3:h:mediatek:mt9030:-:::::::*
	cpe:2.3:h:mediatek:mt9031:-:::::::*
	cpe:2.3:h:mediatek:mt9032:-:::::::*
	cpe:2.3:h:mediatek:mt9215:-:::::::*
	cpe:2.3:h:mediatek:mt9216:-:::::::*
	cpe:2.3:h:mediatek:mt9218:-:::::::*
	cpe:2.3:h:mediatek:mt9220:-:::::::*
	cpe:2.3:h:mediatek:mt9221:-:::::::*
	cpe:2.3:h:mediatek:mt9222:-:::::::*
	cpe:2.3:h:mediatek:mt9255:-:::::::*
	cpe:2.3:h:mediatek:mt9256:-:::::::*
	cpe:2.3:h:mediatek:mt9266:-:::::::*
	cpe:2.3:h:mediatek:mt9269:-:::::::*
	cpe:2.3:h:mediatek:mt9285:-:::::::*
	cpe:2.3:h:mediatek:mt9286:-:::::::*
	cpe:2.3:h:mediatek:mt9288:-:::::::*
	cpe:2.3:h:mediatek:mt9600:-:::::::*
	cpe:2.3:h:mediatek:mt9602:-:::::::*
	cpe:2.3:h:mediatek:mt9610:-:::::::*
	cpe:2.3:h:mediatek:mt9611:-:::::::*
	cpe:2.3:h:mediatek:mt9612:-:::::::*
	cpe:2.3:h:mediatek:mt9613:-:::::::*
	cpe:2.3:h:mediatek:mt9615:-:::::::*
	cpe:2.3:h:mediatek:mt9617:-:::::::*
	cpe:2.3:h:mediatek:mt9629:-:::::::*
	cpe:2.3:h:mediatek:mt9630:-:::::::*
	cpe:2.3:h:mediatek:mt9631:-:::::::*
	cpe:2.3:h:mediatek:mt9632:-:::::::*
	cpe:2.3:h:mediatek:mt9636:-:::::::*
	cpe:2.3:h:mediatek:mt9638:-:::::::*
	cpe:2.3:h:mediatek:mt9639:-:::::::*
	cpe:2.3:h:mediatek:mt9650:-:::::::*
	cpe:2.3:h:mediatek:mt9652:-:::::::*
	cpe:2.3:h:mediatek:mt9666:-:::::::*
	cpe:2.3:h:mediatek:mt9667:-:::::::*
	cpe:2.3:h:mediatek:mt9669:-:::::::*
	cpe:2.3:h:mediatek:mt9670:-:::::::*
	cpe:2.3:h:mediatek:mt9671:-:::::::*
	cpe:2.3:h:mediatek:mt9675:-:::::::*
	cpe:2.3:h:mediatek:mt9685:-:::::::*
	cpe:2.3:h:mediatek:mt9686:-:::::::*
	cpe:2.3:h:mediatek:mt9688:-:::::::*

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2023-24988	In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03751198; Issue ID: DTV03751198.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00014.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://corp.mediatek.com/product-security-bulletin/August-2023

History

Tue, 22 Oct 2024 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Subscriptions

Google Android

Mediatek Mt5583 Mt5691 Mt5695 Mt9010 Mt9011 Mt9012 Mt9016 Mt9020 Mt9021 Mt9022 Mt9030 Mt9031 Mt9032 Mt9215 Mt9216 Mt9218 Mt9220 Mt9221 Mt9222 Mt9255 Mt9256 Mt9266 Mt9269 Mt9285 Mt9286 Mt9288 Mt9600 Mt9602 Mt9610 Mt9611 Mt9612 Mt9613 Mt9615 Mt9617 Mt9629 Mt9630 Mt9631 Mt9632 Mt9636 Mt9638 Mt9639 Mt9650 Mt9652 Mt9666 Mt9667 Mt9669 Mt9670 Mt9671 Mt9675 Mt9685 Mt9686 Mt9688

MITRE

Status: PUBLISHED

Assigner: MediaTek

Published: 2023-08-07T03:21:56.862Z

Updated: 2024-10-22T19:12:32.096Z

Reserved: 2022-10-28T02:03:23.672Z

Link: CVE-2023-20809

Vulnrichment

Updated: 2024-08-02T09:14:40.976Z

NVD

Status : Modified

Published: 2023-08-07T04:15:14.240

Modified: 2024-11-21T07:41:34.370

Link: CVE-2023-20809

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-787

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object