Overview
- Description
- In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09008925; Issue ID: MSV-1681.
- Source
- security@mediatek.com
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Secondary
- Base score
- 4.4
- Impact score
- 3.6
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
Weaknesses
- security@mediatek.com
- CWE-125
Social media
- Hype score
- Not currently trending
CVE-2024-20117 Out of Bounds Read in vdec Causes Local Information Disclosure I... https://t.co/ERviEGrJ8A Customizable Vulnerability Alerts: https://t.co/U7998fz7yk
@VulmonFeeds
4 Nov 2024
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-20117 In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges nee… https://t.co/hrkrJiPIcB
@CVEnew
4 Nov 2024
159 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes