In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Issue ID: MSV-1603.
The WLAN driver contains an out-of-bounds write error (CWE-787) resulting from improper input validation. An attacker can deliver specially crafted network data that causes writing outside the intended memory area. The exploit requires no privileges on the device or user interaction, making the attack fully remote and hands-off.
Successful exploitation of this vulnerability can lead to complete takeover of the device through remote code execution (RCE) in the context of the WLAN driver, with potential access to sensitive data, ability to modify it, and disruption of system operation.
Apply patches available from the manufacturer according to the references (Patch ID: ALPS08998449; Issue ID: MSV-1603). Detailed information about affected versions and updates is available in the MediaTek security bulletin from October 2024: https://corp.mediatek.com/product-security-bulletin/October-2024
Devices based on MediaTek chipsets with systems: MediaTek IoT Yocto, MediaTek Software Development Kit (SDK), and Google Android (versions specified in the MediaTek security bulletin from October 2024)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HGoogle Android
OSGoogle12.013.014.0Mediatek Iot Yocto
APPMediatek24.0Mediatek Mt3605
HWMediatekwszystkie wersjeMediatek Mt6985
HWMediatekwszystkie wersjeMediatek Mt6989
HWMediatekwszystkie wersjeMediatek Mt6990
HWMediatekwszystkie wersjeMediatek Mt7927
HWMediatekwszystkie wersjeMediatek Mt8183
HWMediatekwszystkie wersjeMediatek Mt8365
HWMediatekwszystkie wersjeMediatek Mt8512
HWMediatekwszystkie wersjeMediatek Mt8676
HWMediatekwszystkie wersjeMediatek Mt8678
HWMediatekwszystkie wersjeMediatek Mt8695
HWMediatekwszystkie wersjeMediatek Mt8698
HWMediatekwszystkie wersjeMediatek Mt8755
HWMediatekwszystkie wersjeMediatek Mt8775
HWMediatekwszystkie wersjeMediatek Mt8792
HWMediatekwszystkie wersjeMediatek Mt8796
HWMediatekwszystkie wersjeMediatek Software Development Kit
APPMediatek≤ 3.3
Related vulnerabilities
Heap buffer overflow in UI in Google Chrome on Android prior to 86.0.4240.185 allowed a remote attacker who ha...
Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application cr...
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4...
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4...
Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed ...