CVE-2024-20137

Published Dec 2, 2024

Last updated 3 months ago

CVSS high 7.5

Overview

Description
In wlan driver, there is a possible client disconnection due to improper handling of exceptional conditions. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00384543; Issue ID: MSV-1727.
Source
security@mediatek.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
HIGH

Weaknesses

security@mediatek.com
CWE-248

Social media

Hype score
Not currently trending

  1. #exploit 1. CVE-2024-45440: Drupal Full Path Disclosure https://t.co/tsmS6r2aQy 2. How an obscure PHP footgun led to RCE in Craft CMS https://t.co/HuvBH1x8aX 3. CVE-2024-20137: MediaTek SOCs WLAN Driver - DoS https://t.co/7Kyupv1n6L 4. CVE-2024-42845: InVesalius DICOM File… htt

    @ksg93rd

    28 Dec 2024

    161 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  2. CVE-2024-20137 (CVSS:7.5, HIGH) is Awaiting Analysis. In wlan driver, there is a possible client disconnection due to improper handling of exceptional conditions. This could ..https://t.co/l4nJTuPBk0 #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre

    @cracbot

    6 Dec 2024

    8 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 🚨 CVE-2024-20137: Critical vuln in MediaTek MT6890/MT7622/MT7915/MT7916/MT7981/MT7986 WLAN Driver leads to uncaught exception. Remotely exploitable. Patch ASAP to mitigate risk of system compromise. #CyberSecurity #PatchNow

    @oktsec

    2 Dec 2024

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2024-20137 In wlan driver, there is a possible client disconnection due to i... https://t.co/9vY7TkA1jU Vulnerability Alert Subscriptions: https://t.co/hrQhy5uz4x

    @VulmonFeeds

    2 Dec 2024

    53 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. CVE-2024-20137 In wlan driver, there is a possible client disconnection due to improper handling of exceptional conditions. This could lead to remote denial of service with no addit… https://t.co/y2iHSA7eSa

    @CVEnew

    2 Dec 2024

    395 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References