CVE-2024-20021 (GCVE-0-2024-20021)
Vulnerability from cvelistv5 – Published: 2024-05-06 02:52 – Updated: 2024-08-01 21:52
VLAI
Summary
In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08584568; Issue ID: MSV-1249.
Severity
6.7 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-269 - Improper Privilege Management
Assigner
References
1 reference
Impacted products
42 products
| Vendor | Product | Version | |
|---|---|---|---|
| MediaTek, Inc. | MT6768, MT6781, MT6785, MT6833, MT6853, MT6873, MT6877, MT6885, MT6893, MT8168, MT8183, MT8188, MT8188T, MT8195, MT8195Z, MT8321, MT8362A, MT8365, MT8385, MT8666, MT8666A, MT8666B, MT8667, MT8673, MT8675, MT8675, MT8676, MT8678, MT8765, MT8766, MT8766Z, MT8768, MT8768A, MT8768B, MT8768T, MT8768Z, MT8781, MT8781, MT8786, MT8788, MT8788T, MT8788, MT8788X, MT8788Z, MT8792, MT8795T, MT8796, MT8798 |
Affected:
Android 12.0, 13.0, 14.0
|
|
| mediatek | mt6853 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:* |
|
| mediatek | mt6873 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* |
|
| mediatek | mt6885 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* |
|
| mediatek | mt6893 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:* |
|
| mediatek | mt8168 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:* |
|
| mediatek | mt8183 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:* |
|
| mediatek | mt8188 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:* |
|
| mediatek | mt8188t |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8188t:-:*:*:*:*:*:*:* |
|
| mediatek | mt8195 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:* |
|
| mediatek | mt8195z |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:* |
|
| mediatek | mt8362a |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8362a:-:*:*:*:*:*:*:* |
|
| mediatek | mt8365 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:* |
|
| mediatek | mt8666 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:* |
|
| mediatek | mt8667 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:* |
|
| mediatek | mt8675 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:* |
|
| mediatek | mt8765 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:* |
|
| mediatek | mt8766 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:* |
|
| mediatek | mt8766z |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8766z:-:*:*:*:*:*:*:* |
|
| mediatek | mt8768a |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8768a:-:*:*:*:*:*:*:* |
|
| mediatek | mt8768b |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8768b:-:*:*:*:*:*:*:* |
|
| mediatek | mt8768z |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8768z:-:*:*:*:*:*:*:* |
|
| mediatek | mt8781 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:* |
|
| mediatek | mt8788 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8788:-:*:*:*:*:*:*:* |
|
| mediatek | mt8788t |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8788t:-:*:*:*:*:*:*:* |
|
| mediatek | mt8788z |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8788z:-:*:*:*:*:*:*:* |
|
| mediatek | mt8792 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:* |
|
| mediatek | mt8795t |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:* |
|
| mediatek | mt8798 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:* |
|
| mediatek | mt6768 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:a:mediatek:mt6768:*:*:*:*:*:*:*:* |
|
| mediatek | mt6781 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:* |
|
| mediatek | mt6785 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:* |
|
| mediatek | mt6833 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:* |
|
| mediatek | mt6877 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:* |
|
| mediatek | mt8321 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8321:-:*:*:*:*:*:*:* |
|
| mediatek | mt8666a |
Affected:
Android 12.0 , ≤ Android 14.0
(git)
cpe:2.3:h:mediatek:mt8666a:-:*:*:*:*:*:*:* |
|
| mediatek | mt8673 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:* |
|
| mediatek | mt8768 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:* |
|
| mediatek | mt8768t |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8768t:-:*:*:*:*:*:*:* |
|
| mediatek | mt8786 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:* |
|
| mediatek | mt8788x |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8788x:-:*:*:*:*:*:*:* |
|
| mediatek | mt8796 |
Affected:
Android 12.0 , ≤ Android 14.0
(custom)
cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:* |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6853",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6873",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6885",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6893",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8168",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8183",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8188",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8188t:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8188t",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8195",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8195z",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8362a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8362a",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8365",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8666",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8667",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8675",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8765",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8766",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8766z:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8766z",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8768a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8768a",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8768b:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8768b",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8768z:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8768z",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8781",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8788:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8788",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8788t:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8788t",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8788z:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8788z",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8792",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8795t",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8798",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:a:mediatek:mt6768:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6768",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6781",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6785",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6833",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt6877",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8321:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8321",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8666a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8666a",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "git"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8673",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8768",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8768t:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8768t",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8786",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8788x:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8788x",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "mt8796",
"vendor": "mediatek",
"versions": [
{
"lessThanOrEqual": "Android 14.0",
"status": "affected",
"version": "Android 12.0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-20021",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-05-10T15:52:43.868259Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-04T17:40:13.269Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T21:52:31.733Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://corp.mediatek.com/product-security-bulletin/May-2024"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "MT6768, MT6781, MT6785, MT6833, MT6853, MT6873, MT6877, MT6885, MT6893, MT8168, MT8183, MT8188, MT8188T, MT8195, MT8195Z, MT8321, MT8362A, MT8365, MT8385, MT8666, MT8666A, MT8666B, MT8667, MT8673, MT8675, MT8675, MT8676, MT8678, MT8765, MT8766, MT8766Z, MT8768, MT8768A, MT8768B, MT8768T, MT8768Z, MT8781, MT8781, MT8786, MT8788, MT8788T, MT8788, MT8788X, MT8788Z, MT8792, MT8795T, MT8796, MT8798",
"vendor": "MediaTek, Inc.",
"versions": [
{
"status": "affected",
"version": "Android 12.0, 13.0, 14.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08584568; Issue ID: MSV-1249."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-269",
"description": "CWE-269 Improper Privilege Management",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-05-06T02:52:01.865Z",
"orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
"shortName": "MediaTek"
},
"references": [
{
"url": "https://corp.mediatek.com/product-security-bulletin/May-2024"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
"assignerShortName": "MediaTek",
"cveId": "CVE-2024-20021",
"datePublished": "2024-05-06T02:52:01.865Z",
"dateReserved": "2023-11-02T13:35:35.151Z",
"dateUpdated": "2024-08-01T21:52:31.733Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-20021",
"date": "2026-06-03",
"epss": "0.00032",
"percentile": "0.09525"
},
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08584568; Issue ID: MSV-1249.\"}, {\"lang\": \"es\", \"value\": \"En atf spm, existe una forma posible de reasignar la memoria f\\u00edsica a la memoria virtual debido a un error l\\u00f3gico. Esto podr\\u00eda conducir a una escalada local de privilegios con permisos de ejecuci\\u00f3n de System necesarios. La interacci\\u00f3n del usuario no es necesaria para la explotaci\\u00f3n. ID de parche: ALPS08584568; ID del problema: MSV-1249.\"}]",
"id": "CVE-2024-20021",
"lastModified": "2024-11-21T08:51:49.180",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 6.7, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 5.9}]}",
"published": "2024-05-06T03:15:09.477",
"references": "[{\"url\": \"https://corp.mediatek.com/product-security-bulletin/May-2024\", \"source\": \"security@mediatek.com\"}, {\"url\": \"https://corp.mediatek.com/product-security-bulletin/May-2024\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "security@mediatek.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"security@mediatek.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-269\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-20021\",\"sourceIdentifier\":\"security@mediatek.com\",\"published\":\"2024-05-06T03:15:09.477\",\"lastModified\":\"2025-04-30T16:42:17.380\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08584568; Issue ID: MSV-1249.\"},{\"lang\":\"es\",\"value\":\"En atf spm, existe una forma posible de reasignar la memoria f\u00edsica a la memoria virtual debido a un error l\u00f3gico. Esto podr\u00eda conducir a una escalada local de privilegios con permisos de ejecuci\u00f3n de System necesarios. La interacci\u00f3n del usuario no es necesaria para la explotaci\u00f3n. ID de parche: ALPS08584568; ID del problema: MSV-1249.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":6.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"security@mediatek.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-269\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8FB8EE9-FC56-4D5E-AE55-A5967634740C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"879FFD0C-9B38-4CAA-B057-1086D794D469\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2700BCC5-634D-4EC6-AB67-5B678D5F951D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06CD97E1-8A76-48B4-9780-9698EF5A960F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4EEE021-6B2A-47A0-AC6B-55525A40D718\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A82E0A4F-072F-474C-B94C-8114ABE05639\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9814939B-F05E-4870-90C0-7C0F6BAAEB39\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"366F1912-756B-443E-9962-224937DD7DFB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6B8A36E-C5FB-44AE-A1C3-50EBF4C68F6B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD64413C-C774-4C4F-9551-89E1AA9469EE\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"213B5C7F-D965-4312-9CDF-4F06FA77D401\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CE2FC35-716A-4706-97BA-5DB165041580\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23F65D7B-31A1-4D94-82E9-254A7A6D7BE1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA3D4A45-38EE-4125-AE67-89D1C707F95A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8188t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4675A09-0147-4690-8AA1-E3802CA1B3EB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED210E64-6CE7-42B1-849E-68C0E22521F6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B3A37B9-F500-4B3C-B77C-B2BD7B015154\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8321:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"793B7F88-79E7-4031-8AD0-35C9BFD073C4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8362a:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F16F2B9-D89D-4AB2-B768-CB3B22AEFE11\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97C76F98-5D8D-4E52-ABAF-CD27C1205B0E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8385:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"299378ED-41CE-4966-99B1-65D2BA1215EF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C9AB4D2-0EDD-4D5E-9393-F535CA2F24C4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8666a:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF649E18-4DA8-4724-A9B2-575BC01BFACC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8666b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69D98D9F-4594-4411-B788-BBD53EE5B227\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2FE14B46-C1CA-465F-8578-059FA2ED30EB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"152F6606-FA23-4530-AA07-419866B74CB3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03E6123A-7603-4EAB-AFFB-229E8A040709\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE302F6F-170E-4350-A8F4-65BE0C50CB78\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"152A5F3D-8004-4649-BDB1-E6F0798AF1CB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3AACF35D-27E0-49AF-A667-13585C8B8071\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE45F606-2E75-48BC-9D1B-99D504974CBF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8766z:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F25CBBB-B600-4A54-8653-4C60CD125353\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8768a:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D039235C-D84C-4E9B-9D01-16A24E95FE79\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8768b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D99E26E-A551-428C-90FF-0F6CDE28C1A1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8768t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21CA41B1-2BAF-43DE-AD79-396FA5125695\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8768z:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02B6E7E0-8BD2-4BA1-948F-3F5A95B989F5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"533284E5-C3AF-48D3-A287-993099DB2E41\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8788:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE10C121-F2AD-43D2-8FF9-A6C197858220\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8788t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0165F48B-B11A-4A8B-859B-083D239270FF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8788x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4DE760A-BF65-4917-B571-1382C6703271\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8788z:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5CE75D73-582B-48BF-B38A-3F9626338C7D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"336FC69E-E89F-4642-B6B9-8009D9A2BD52\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78D4E9E1-B044-41EC-BE98-22DC0E5E9010\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE933AD9-3A6F-421B-8AB3-C45F8DEA9548\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"637CAAD2-DCC0-4F81-B781-5D0536844CA8\"}]}]}],\"references\":[{\"url\":\"https://corp.mediatek.com/product-security-bulletin/May-2024\",\"source\":\"security@mediatek.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://corp.mediatek.com/product-security-bulletin/May-2024\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"cna\": {\"providerMetadata\": {\"orgId\": \"ee979b05-11f8-4f25-a7e0-a1fa9c190374\", \"shortName\": \"MediaTek\", \"dateUpdated\": \"2024-05-06T02:52:01.865Z\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08584568; Issue ID: MSV-1249.\"}], \"affected\": [{\"vendor\": \"MediaTek, Inc.\", \"product\": \"MT6768, MT6781, MT6785, MT6833, MT6853, MT6873, MT6877, MT6885, MT6893, MT8168, MT8183, MT8188, MT8188T, MT8195, MT8195Z, MT8321, MT8362A, MT8365, MT8385, MT8666, MT8666A, MT8666B, MT8667, MT8673, MT8675, MT8675, MT8676, MT8678, MT8765, MT8766, MT8766Z, MT8768, MT8768A, MT8768B, MT8768T, MT8768Z, MT8781, MT8781, MT8786, MT8788, MT8788T, MT8788, MT8788X, MT8788Z, MT8792, MT8795T, MT8796, MT8798\", \"versions\": [{\"version\": \"Android 12.0, 13.0, 14.0\", \"status\": \"affected\"}]}], \"references\": [{\"url\": \"https://corp.mediatek.com/product-security-bulletin/May-2024\"}], \"problemTypes\": [{\"descriptions\": [{\"type\": \"CWE\", \"lang\": \"en\", \"cweId\": \"CWE-269\", \"description\": \"CWE-269 Improper Privilege Management\"}]}]}, \"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.7, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-20021\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-10T15:52:43.868259Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6853\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6873\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6885\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6893\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8168\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8183\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8188\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8188t:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8188t\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8195\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8195z\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8362a:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8362a\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8365\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8666\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8667\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8675\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8765\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8766\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8766z:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8766z\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8768a:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8768a\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8768b:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8768b\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8768z:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8768z\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8781\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8788:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8788\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8788t:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8788t\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8788z:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8788z\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8792\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8795t\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8798\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:mediatek:mt6768:*:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6768\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6781\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6785\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6833\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt6877\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8321:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8321\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8666a:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8666a\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"git\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8673\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8768\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8768t:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8768t\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8786\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8788x:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8788x\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*\"], \"vendor\": \"mediatek\", \"product\": \"mt8796\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android 12.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"Android 14.0\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-10T16:14:05.762Z\"}}]}",
"cveMetadata": "{\"cveId\": \"CVE-2024-20021\", \"assignerOrgId\": \"ee979b05-11f8-4f25-a7e0-a1fa9c190374\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"MediaTek\", \"dateReserved\": \"2023-11-02T13:35:35.151Z\", \"datePublished\": \"2024-05-06T02:52:01.865Z\", \"dateUpdated\": \"2024-06-04T17:40:13.269Z\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…