CVE-2021-40148 - Vulnerability Details

Vendors	Products
Mediatek	L9 Lr11 Lr12 Lr12a Lr13 Mt2731 Mt2735 Mt3967 Mt6297 Mt6739 Mt6761 Mt6762 Mt6762d Mt6762m Mt6763 Mt6765 Mt6765t Mt6767 Mt6768 Mt6769 Mt6769t Mt6769z Mt6771 Mt6779 Mt6781 Mt6783 Mt6785 Mt6785t Mt6833 Mt6853 Mt6855 Mt6873 Mt6875 Mt6875t Mt6877 Mt6880 Mt6883 Mt6885 Mt6889 Mt6890 Mt6891 Mt6893 Mt8666 Mt8675 Mt8765 Mt8766 Mt8768 Mt8771 Mt8786 Mt8788 Mt8791 Mt8797 Nr15

Link	Providers
https://corp.mediatek.com/product-security-bulletin/January-2022

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-01-04T15:54:09", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://corp.mediatek.com/product-security-bulletin/January-2022"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2021-40148", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://corp.mediatek.com/product-security-bulletin/January-2022", "refsource": "MISC", "url": "https://corp.mediatek.com/product-security-bulletin/January-2022"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T02:27:31.664Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://corp.mediatek.com/product-security-bulletin/January-2022"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2021-40148", "datePublished": "2022-01-04T15:54:09", "dateReserved": "2021-08-27T00:00:00", "dateUpdated": "2024-08-04T02:27:31.664Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2022-01-04T15:54:09 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

]

url : https://corp.mediatek.com/product-security-bulletin/January-2022 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2021-40148 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://corp.mediatek.com/product-security-bulletin/January-2022 (string)

refsource : MISC (string)

url : https://corp.mediatek.com/product-security-bulletin/January-2022 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-04T02:27:31.664Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

1 : x_transferred (string)

]

url : https://corp.mediatek.com/product-security-bulletin/January-2022 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2021-40148 (string)

datePublished : 2022-01-04T15:54:09 (string)

dateReserved : 2021-08-27T00:00:00 (string)

dateUpdated : 2024-08-04T02:27:31.664Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:mediatek:l9:*:*:*:*:*:*:*:*", "matchCriteriaId": "7C390EE8-299C-4CE7-B493-6ABC97686389", "vulnerable": true}, {"criteria": "cpe:2.3:o:mediatek:lr11:-:*:*:*:*:*:*:*", "matchCriteriaId": "BFEBC79B-E936-4499-8B2D-C6619C51B755", "vulnerable": true}, {"criteria": "cpe:2.3:o:mediatek:lr12:-:*:*:*:*:*:*:*", "matchCriteriaId": "32EA5EB6-EBC1-4660-9E03-616CDB25C417", "vulnerable": true}, {"criteria": "cpe:2.3:o:mediatek:lr12a:-:*:*:*:*:*:*:*", "matchCriteriaId": "A4B6AFD8-6CBA-4A1D-B38F-A9ABFEB6EFC5", "vulnerable": true}, {"criteria": "cpe:2.3:o:mediatek:lr13:-:*:*:*:*:*:*:*", "matchCriteriaId": "12318A0A-16CD-48A5-98A4-373070734642", "vulnerable": true}, {"criteria": "cpe:2.3:o:mediatek:nr15:-:*:*:*:*:*:*:*", "matchCriteriaId": "E30A2D2E-6A72-4070-A471-EEE75F7D07F2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:mediatek:mt2731:-:*:*:*:*:*:*:*", "matchCriteriaId": "6528FA05-C8B7-498B-93BE-0BEFED28C1FB", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt2735:-:*:*:*:*:*:*:*", "matchCriteriaId": "7F1D09FC-5BE9-4B23-82F1-3C6EAC5711A6", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt3967:-:*:*:*:*:*:*:*", "matchCriteriaId": "4F7108A7-4925-45DF-8705-04F147DB5CF2", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6297:-:*:*:*:*:*:*:*", "matchCriteriaId": "99B87E31-AC92-445B-94B8-33DBF72EC11C", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*", "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*", "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6762:-:*:*:*:*:*:*:*", "matchCriteriaId": "C445EB80-6021-4E26-B74E-1B4B6910CE48", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6762d:-:*:*:*:*:*:*:*", "matchCriteriaId": "160C2DDD-6CA5-4E4F-B885-C8AAA7D1D942", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6762m:-:*:*:*:*:*:*:*", "matchCriteriaId": "0002C537-4268-43CA-B349-BC14F1F0313C", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6763:-:*:*:*:*:*:*:*", "matchCriteriaId": "2F19C76A-50DF-4ACA-BACA-07157B4D838B", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*", "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6765t:-:*:*:*:*:*:*:*", "matchCriteriaId": "AE80B083-D5A3-418C-9655-C79C9DECB4C5", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6767:-:*:*:*:*:*:*:*", "matchCriteriaId": "3367BA13-9C4D-4CCF-8E71-397F33CFF773", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*", "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6769:-:*:*:*:*:*:*:*", "matchCriteriaId": "D23991D5-1893-49F4-8A06-D5E66C96C3B3", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6769t:-:*:*:*:*:*:*:*", "matchCriteriaId": "B43D63CF-FF77-41D8-BA4B-F8BDF88830BA", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6769z:-:*:*:*:*:*:*:*", "matchCriteriaId": "BA1BE913-70AE-49FE-99E9-E996165DF79D", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:*", "matchCriteriaId": "BE4D2AED-C713-407F-A34A-52C3D8F65835", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:*", "matchCriteriaId": "EBA369B8-8E23-492B-82CC-23114E6A5D1C", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*", "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6783:-:*:*:*:*:*:*:*", "matchCriteriaId": "F2C8F9C2-6471-4498-B089-2F40D2483487", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*", "matchCriteriaId": "A82E0A4F-072F-474C-B94C-8114ABE05639", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6785t:-:*:*:*:*:*:*:*", "matchCriteriaId": "E208C7B7-7BF6-4E56-B61C-0198B08DC8B3", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*", "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*", "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*", "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*", "matchCriteriaId": "F6B8A36E-C5FB-44AE-A1C3-50EBF4C68F6B", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*", "matchCriteriaId": "80BDC5EC-E822-4BC7-8C0D-E8AD8396E8FE", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6875t:-:*:*:*:*:*:*:*", "matchCriteriaId": "F883C6D3-1724-4553-9EFC-3D204FF3CAA3", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*", "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6880:-:*:*:*:*:*:*:*", "matchCriteriaId": "68CF4A7A-3136-4C4C-A795-81323896BE11", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*", "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*", "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*", "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:*", "matchCriteriaId": "171D1C08-F055-44C0-913C-AA2B73AF5B72", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*", "matchCriteriaId": "D8E91CA4-CA5B-40D1-9A96-2B875104BCF4", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*", "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*", "matchCriteriaId": "6C9AB4D2-0EDD-4D5E-9393-F535CA2F24C4", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*", "matchCriteriaId": "03E6123A-7603-4EAB-AFFB-229E8A040709", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*", "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*", "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*", "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*", "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*", "matchCriteriaId": "9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8788:-:*:*:*:*:*:*:*", "matchCriteriaId": "FE10C121-F2AD-43D2-8FF9-A6C197858220", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*", "matchCriteriaId": "9CD2C3EC-B62D-4616-964F-FDBE5B14A449", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*", "matchCriteriaId": "2B469BF4-5961-42E9-814B-1BE06D182E45", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933."}, {"lang": "es", "value": "En el m\u00f3dem EMM, se presenta una posible divulgaci\u00f3n de informaci\u00f3n debido a una falta de cifrado de datos. Esto podr\u00eda conllevar a una divulgaci\u00f3n de informaci\u00f3n remota sin ser necesarios privilegios de ejecuci\u00f3n adicionales. No es requerida una interacci\u00f3n del usuario para su explotaci\u00f3n. ID del Parche: MOLY00716585; ID de Incidencia: ALPS05886933"}], "id": "CVE-2021-40148", "lastModified": "2024-11-21T06:23:39.777", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-01-04T16:15:09.193", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://corp.mediatek.com/product-security-bulletin/January-2022"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://corp.mediatek.com/product-security-bulletin/January-2022"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-319"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:mediatek:l9:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7C390EE8-299C-4CE7-B493-6ABC97686389 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:mediatek:lr11:-:*:*:*:*:*:*:* (string)

matchCriteriaId : BFEBC79B-E936-4499-8B2D-C6619C51B755 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:mediatek:lr12:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 32EA5EB6-EBC1-4660-9E03-616CDB25C417 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:mediatek:lr12a:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A4B6AFD8-6CBA-4A1D-B38F-A9ABFEB6EFC5 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:mediatek:lr13:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 12318A0A-16CD-48A5-98A4-373070734642 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:mediatek:nr15:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E30A2D2E-6A72-4070-A471-EEE75F7D07F2 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:mediatek:mt2731:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6528FA05-C8B7-498B-93BE-0BEFED28C1FB (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:mediatek:mt2735:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7F1D09FC-5BE9-4B23-82F1-3C6EAC5711A6 (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:mediatek:mt3967:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 4F7108A7-4925-45DF-8705-04F147DB5CF2 (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:mediatek:mt6297:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 99B87E31-AC92-445B-94B8-33DBF72EC11C (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7FA8A390-9F52-4CF3-9B45-936CE3E2B828 (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F726F486-A86F-4215-AD93-7A07A071844A (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:mediatek:mt6762:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C445EB80-6021-4E26-B74E-1B4B6910CE48 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:mediatek:mt6762d:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 160C2DDD-6CA5-4E4F-B885-C8AAA7D1D942 (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:mediatek:mt6762m:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 0002C537-4268-43CA-B349-BC14F1F0313C (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:mediatek:mt6763:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 2F19C76A-50DF-4ACA-BACA-07157B4D838B (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 43E779F6-F0A0-4153-9A1D-B715C3A2F80E (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:mediatek:mt6765t:-:*:*:*:*:*:*:* (string)

matchCriteriaId : AE80B083-D5A3-418C-9655-C79C9DECB4C5 (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:mediatek:mt6767:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3367BA13-9C4D-4CCF-8E71-397F33CFF773 (string)

vulnerable : false (boolean)

}

13 : { »

criteria : cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 06CD97E1-8A76-48B4-9780-9698EF5A960F (string)

vulnerable : false (boolean)

}

14 : { »

criteria : cpe:2.3:h:mediatek:mt6769:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D23991D5-1893-49F4-8A06-D5E66C96C3B3 (string)

vulnerable : false (boolean)

}

15 : { »

criteria : cpe:2.3:h:mediatek:mt6769t:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B43D63CF-FF77-41D8-BA4B-F8BDF88830BA (string)

vulnerable : false (boolean)

}

16 : { »

criteria : cpe:2.3:h:mediatek:mt6769z:-:*:*:*:*:*:*:* (string)

matchCriteriaId : BA1BE913-70AE-49FE-99E9-E996165DF79D (string)

vulnerable : false (boolean)

}

17 : { »

criteria : cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:* (string)

matchCriteriaId : BE4D2AED-C713-407F-A34A-52C3D8F65835 (string)

vulnerable : false (boolean)

}

18 : { »

criteria : cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:* (string)

matchCriteriaId : EBA369B8-8E23-492B-82CC-23114E6A5D1C (string)

vulnerable : false (boolean)

}

19 : { »

criteria : cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C4EEE021-6B2A-47A0-AC6B-55525A40D718 (string)

vulnerable : false (boolean)

}

20 : { »

criteria : cpe:2.3:h:mediatek:mt6783:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F2C8F9C2-6471-4498-B089-2F40D2483487 (string)

vulnerable : false (boolean)

}

21 : { »

criteria : cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A82E0A4F-072F-474C-B94C-8114ABE05639 (string)

vulnerable : false (boolean)

}

22 : { »

criteria : cpe:2.3:h:mediatek:mt6785t:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E208C7B7-7BF6-4E56-B61C-0198B08DC8B3 (string)

vulnerable : false (boolean)

}

23 : { »

criteria : cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 9814939B-F05E-4870-90C0-7C0F6BAAEB39 (string)

vulnerable : false (boolean)

}

24 : { »

criteria : cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 366F1912-756B-443E-9962-224937DD7DFB (string)

vulnerable : false (boolean)

}

25 : { »

criteria : cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A (string)

vulnerable : false (boolean)

}

26 : { »

criteria : cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F6B8A36E-C5FB-44AE-A1C3-50EBF4C68F6B (string)

vulnerable : false (boolean)

}

27 : { »

criteria : cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 80BDC5EC-E822-4BC7-8C0D-E8AD8396E8FE (string)

vulnerable : false (boolean)

}

28 : { »

criteria : cpe:2.3:h:mediatek:mt6875t:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F883C6D3-1724-4553-9EFC-3D204FF3CAA3 (string)

vulnerable : false (boolean)

}

29 : { »

criteria : cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58 (string)

vulnerable : false (boolean)

}

30 : { »

criteria : cpe:2.3:h:mediatek:mt6880:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 68CF4A7A-3136-4C4C-A795-81323896BE11 (string)

vulnerable : false (boolean)

}

31 : { »

criteria : cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 15E2EC3F-9FB3-488B-B1C1-2793A416C755 (string)

vulnerable : false (boolean)

}

32 : { »

criteria : cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* (string)

matchCriteriaId : DD64413C-C774-4C4F-9551-89E1AA9469EE (string)

vulnerable : false (boolean)

}

33 : { »

criteria : cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3B787DC3-8E5A-4968-B20B-37B6257FAAE2 (string)

vulnerable : false (boolean)

}

34 : { »

criteria : cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 171D1C08-F055-44C0-913C-AA2B73AF5B72 (string)

vulnerable : false (boolean)

}

35 : { »

criteria : cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D8E91CA4-CA5B-40D1-9A96-2B875104BCF4 (string)

vulnerable : false (boolean)

}

36 : { »

criteria : cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 213B5C7F-D965-4312-9CDF-4F06FA77D401 (string)

vulnerable : false (boolean)

}

37 : { »

criteria : cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6C9AB4D2-0EDD-4D5E-9393-F535CA2F24C4 (string)

vulnerable : false (boolean)

}

38 : { »

criteria : cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 03E6123A-7603-4EAB-AFFB-229E8A040709 (string)

vulnerable : false (boolean)

}

39 : { »

criteria : cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3AACF35D-27E0-49AF-A667-13585C8B8071 (string)

vulnerable : false (boolean)

}

40 : { »

criteria : cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:* (string)

matchCriteriaId : CE45F606-2E75-48BC-9D1B-99D504974CBF (string)

vulnerable : false (boolean)

}

41 : { »

criteria : cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA (string)

vulnerable : false (boolean)

}

42 : { »

criteria : cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 0D09F23D-D023-4A60-B426-61251FDD8A5A (string)

vulnerable : false (boolean)

}

43 : { »

criteria : cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6 (string)

vulnerable : false (boolean)

}

44 : { »

criteria : cpe:2.3:h:mediatek:mt8788:-:*:*:*:*:*:*:* (string)

matchCriteriaId : FE10C121-F2AD-43D2-8FF9-A6C197858220 (string)

vulnerable : false (boolean)

}

45 : { »

criteria : cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 9CD2C3EC-B62D-4616-964F-FDBE5B14A449 (string)

vulnerable : false (boolean)

}

46 : { »

criteria : cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 2B469BF4-5961-42E9-814B-1BE06D182E45 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933. (string)

}

1 : { »

lang : es (string)

value : En el módem EMM, se presenta una posible divulgación de información debido a una falta de cifrado de datos. Esto podría conllevar a una divulgación de información remota sin ser necesarios privilegios de ejecución adicionales. No es requerida una interacción del usuario para su explotación. ID del Parche: MOLY00716585; ID de Incidencia: ALPS05886933 (string)

}

]

id : CVE-2021-40148 (string)

lastModified : 2024-11-21T06:23:39.777 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : NONE (string)

baseScore : 5 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:N/C:P/I:N/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2022-01-04T16:15:09.193 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://corp.mediatek.com/product-security-bulletin/January-2022 (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://corp.mediatek.com/product-security-bulletin/January-2022 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-319 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object