CVE-2022-21744

Published Jul 6, 2022
Last updated 2 years ago
CVSS critical 9.8
Overview

Description: In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neighbour Cell Data (PNCD) improper neighbouring cell size with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00810064; Issue ID: ALPS06641626.
Source: security@mediatek.com
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL
CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses

nvd@nist.gov: CWE-787
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:mediatek:lr11:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFEBC79B-E936-4499-8B2D-C6619C51B755"
          },
          {
            "criteria": "cpe:2.3:o:mediatek:lr12:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32EA5EB6-EBC1-4660-9E03-616CDB25C417"
          },
          {
            "criteria": "cpe:2.3:o:mediatek:lr12a:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4B6AFD8-6CBA-4A1D-B38F-A9ABFEB6EFC5"
          },
          {
            "criteria": "cpe:2.3:o:mediatek:lr13:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12318A0A-16CD-48A5-98A4-373070734642"
          },
          {
            "criteria": "cpe:2.3:o:mediatek:lr9:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "387D7FC2-2146-4565-9B9B-D84EF686DBA5"
          },
          {
            "criteria": "cpe:2.3:o:mediatek:nr15:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E30A2D2E-6A72-4070-A471-EEE75F7D07F2"
          },
          {
            "criteria": "cpe:2.3:o:mediatek:nr16:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B763B71-F913-45B4-B91E-D7F0670C4315"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:mediatek:mt2731:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6528FA05-C8B7-498B-93BE-0BEFED28C1FB"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt2735:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7F1D09FC-5BE9-4B23-82F1-3C6EAC5711A6"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6297:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "99B87E31-AC92-445B-94B8-33DBF72EC11C"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6725:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BCEE78CC-80F8-4C4F-92BA-378AAA85F087"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6735:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C82E144B-0BAD-47E1-A657-3A5880988FE2"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6737:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4E76B29F-007E-4445-B3F3-3FDC054FEB84"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6750:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F51C9D91-A64F-446E-BC14-7C79B770C3A0"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6750s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "12A1CB8F-3C1C-4374-8D46-23175D1174DE"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6755:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "47BE9434-12D6-4801-8B04-7F18AF58E717"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6757:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B4C27948-65A7-4B1E-9F10-6744D176A5C3"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6757p:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "424A75C9-2A15-4B00-B0B7-703A4840CC1D"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6758:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B15C285A-0A26-46F7-9D72-CCADC47D93B0"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6762:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C445EB80-6021-4E26-B74E-1B4B6910CE48"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6762d:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "160C2DDD-6CA5-4E4F-B885-C8AAA7D1D942"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6762m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0002C537-4268-43CA-B349-BC14F1F0313C"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6763:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2F19C76A-50DF-4ACA-BACA-07157B4D838B"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6765t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AE80B083-D5A3-418C-9655-C79C9DECB4C5"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6767:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3367BA13-9C4D-4CCF-8E71-397F33CFF773"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6769:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D23991D5-1893-49F4-8A06-D5E66C96C3B3"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6769t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B43D63CF-FF77-41D8-BA4B-F8BDF88830BA"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6769z:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BA1BE913-70AE-49FE-99E9-E996165DF79D"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BE4D2AED-C713-407F-A34A-52C3D8F65835"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6775:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C387CFFD-BAE4-4626-8AC3-7C9CFB6819FB"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EBA369B8-8E23-492B-82CC-23114E6A5D1C"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6783:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F2C8F9C2-6471-4498-B089-2F40D2483487"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A82E0A4F-072F-474C-B94C-8114ABE05639"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6785t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E208C7B7-7BF6-4E56-B61C-0198B08DC8B3"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6797:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CE7CC141-E2D6-4F28-B6F0-167E11869CD1"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6799:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FC0CAAE1-2BC9-49CA-AC68-2217A4258BDD"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F6B8A36E-C5FB-44AE-A1C3-50EBF4C68F6B"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "80BDC5EC-E822-4BC7-8C0D-E8AD8396E8FE"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6880:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "68CF4A7A-3136-4C4C-A795-81323896BE11"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "171D1C08-F055-44C0-913C-AA2B73AF5B72"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D8E91CA4-CA5B-40D1-9A96-2B875104BCF4"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6C9AB4D2-0EDD-4D5E-9393-F535CA2F24C4"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "03E6123A-7603-4EAB-AFFB-229E8A040709"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8735a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "45A7A805-EFED-47B3-884C-158FF1EECAEC"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8735b:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E1BB519B-9BA4-4D4A-8ED1-CE79E56E70E4"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8788:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FE10C121-F2AD-43D2-8FF9-A6C197858220"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1505AD53-987E-4328-8E1D-F5F1EC12B677"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9CD2C3EC-B62D-4616-964F-FDBE5B14A449"
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2B469BF4-5961-42E9-814B-1BE06D182E45"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
