CVE-2024-20069 - Vulnerability Details

Vendors	Products
Mediatek	Mt6833 Mt6853 Mt6855 Mt6873 Mt6875 Mt6875t Mt6877 Mt6883 Mt6885 Mt6889 Mt6891 Mt6893 Mt8675 Mt8771 Mt8791t Mt8797 Nr15

Link	Providers
https://corp.mediatek.com/product-security-bulletin/June-2024

Type	Values Removed	Values Added
First Time appeared		Mediatek Mediatek mt6833 Mediatek mt6853 Mediatek mt6855 Mediatek mt6873 Mediatek mt6875 Mediatek mt6875t Mediatek mt6877 Mediatek mt6883 Mediatek mt6885 Mediatek mt6889 Mediatek mt6891 Mediatek mt6893 Mediatek mt8675 Mediatek mt8771 Mediatek mt8791t Mediatek mt8797 Mediatek nr15
Weaknesses		NVD-CWE-Other
CPEs		cpe:2.3:h:mediatek:mt6833:-:::::::* cpe:2.3:h:mediatek:mt6853:-:::::::* cpe:2.3:h:mediatek:mt6855:-:::::::* cpe:2.3:h:mediatek:mt6873:-:::::::* cpe:2.3:h:mediatek:mt6875:-:::::::* cpe:2.3:h:mediatek:mt6875t:-:::::::* cpe:2.3:h:mediatek:mt6877:-:::::::* cpe:2.3:h:mediatek:mt6883:-:::::::* cpe:2.3:h:mediatek:mt6885:-:::::::* cpe:2.3:h:mediatek:mt6889:-:::::::* cpe:2.3:h:mediatek:mt6891:-:::::::* cpe:2.3:h:mediatek:mt6893:-:::::::* cpe:2.3:h:mediatek:mt8675:-:::::::* cpe:2.3:h:mediatek:mt8771:-:::::::* cpe:2.3:h:mediatek:mt8791t:-:::::::* cpe:2.3:h:mediatek:mt8797:-:::::::* cpe:2.3:o:mediatek:nr15:-:::::::*
Vendors & Products		Mediatek Mediatek mt6833 Mediatek mt6853 Mediatek mt6855 Mediatek mt6873 Mediatek mt6875 Mediatek mt6875t Mediatek mt6877 Mediatek mt6883 Mediatek mt6885 Mediatek mt6889 Mediatek mt6891 Mediatek mt6893 Mediatek mt8675 Mediatek mt8771 Mediatek mt8791t Mediatek mt8797 Mediatek nr15

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-20069", "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374", "state": "PUBLISHED", "assignerShortName": "MediaTek", "dateReserved": "2023-11-02T13:35:35.171Z", "datePublished": "2024-06-03T02:04:48.667Z", "dateUpdated": "2024-08-01T21:52:31.659Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374", "shortName": "MediaTek", "dateUpdated": "2024-06-06T02:12:39.404Z"}, "descriptions": [{"lang": "en", "value": "In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430."}], "affected": [{"vendor": "MediaTek, Inc.", "product": "MT6833, MT6853, MT6855, MT6873, MT6875, MT6875T, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893, MT8675, MT8771, MT8791T, MT8797", "versions": [{"version": "Modem NR15", "status": "affected"}]}], "references": [{"url": "https://corp.mediatek.com/product-security-bulletin/June-2024"}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "cweId": "CWE-757", "description": "CWE-757 Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')"}]}]}, "adp": [{"affected": [{"vendor": "mediatek", "product": "mt6833", "cpes": ["cpe:2.3:h:mediatek:mt6833:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6853", "cpes": ["cpe:2.3:h:mediatek:mt6853:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6855", "cpes": ["cpe:2.3:h:mediatek:mt6855:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6873", "cpes": ["cpe:2.3:h:mediatek:mt6873:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6875", "cpes": ["cpe:2.3:h:mediatek:mt6875:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6875t", "cpes": ["cpe:2.3:h:mediatek:mt6875t:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6877", "cpes": ["cpe:2.3:h:mediatek:mt6877:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6883", "cpes": ["cpe:2.3:h:mediatek:mt6883:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6885", "cpes": ["cpe:2.3:h:mediatek:mt6885:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6889", "cpes": ["cpe:2.3:h:mediatek:mt6889:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6891", "cpes": ["cpe:2.3:h:mediatek:mt6891:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt6893", "cpes": ["cpe:2.3:h:mediatek:mt6893:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt8675", "cpes": ["cpe:2.3:h:mediatek:mt8675:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt8771", "cpes": ["cpe:2.3:h:mediatek:mt8771:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt8791t", "cpes": ["cpe:2.3:h:mediatek:mt8791t:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "mediatek", "product": "mt8797", "cpes": ["cpe:2.3:h:mediatek:mt8797:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-06-03T18:16:36.426035Z", "id": "CVE-2024-20069", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-31T20:21:58.882Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T21:52:31.659Z"}, "title": "CVE Program Container", "references": [{"url": "https://corp.mediatek.com/product-security-bulletin/June-2024", "tags": ["x_transferred"]}]}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2024-20069 (string)

assignerOrgId : ee979b05-11f8-4f25-a7e0-a1fa9c190374 (string)

state : PUBLISHED (string)

assignerShortName : MediaTek (string)

dateReserved : 2023-11-02T13:35:35.171Z (string)

datePublished : 2024-06-03T02:04:48.667Z (string)

dateUpdated : 2024-08-01T21:52:31.659Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : ee979b05-11f8-4f25-a7e0-a1fa9c190374 (string)

shortName : MediaTek (string)

dateUpdated : 2024-06-06T02:12:39.404Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430. (string)

}

]

affected : [ »

0 : { »

vendor : MediaTek, Inc. (string)

product : MT6833, MT6853, MT6855, MT6873, MT6875, MT6875T, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893, MT8675, MT8771, MT8791T, MT8797 (string)

versions : [ »

0 : { »

version : Modem NR15 (string)

status : affected (string)

}

]

}

]

references : [ »

0 : { »

url : https://corp.mediatek.com/product-security-bulletin/June-2024 (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

type : CWE (string)

lang : en (string)

cweId : CWE-757 (string)

description : CWE-757 Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade') (string)

}

]

}

]

}

adp : [ »

0 : { »

affected : [ »

0 : { »

vendor : mediatek (string)

product : mt6833 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6833:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

1 : { »

vendor : mediatek (string)

product : mt6853 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6853:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

2 : { »

vendor : mediatek (string)

product : mt6855 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6855:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

3 : { »

vendor : mediatek (string)

product : mt6873 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6873:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

4 : { »

vendor : mediatek (string)

product : mt6875 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6875:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

5 : { »

vendor : mediatek (string)

product : mt6875t (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6875t:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

6 : { »

vendor : mediatek (string)

product : mt6877 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6877:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

7 : { »

vendor : mediatek (string)

product : mt6883 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6883:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

8 : { »

vendor : mediatek (string)

product : mt6885 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6885:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

9 : { »

vendor : mediatek (string)

product : mt6889 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6889:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

10 : { »

vendor : mediatek (string)

product : mt6891 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6891:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

11 : { »

vendor : mediatek (string)

product : mt6893 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6893:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

12 : { »

vendor : mediatek (string)

product : mt8675 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt8675:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

13 : { »

vendor : mediatek (string)

product : mt8771 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt8771:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

14 : { »

vendor : mediatek (string)

product : mt8791t (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt8791t:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

15 : { »

vendor : mediatek (string)

product : mt8797 (string)

cpes : [ »

0 : cpe:2.3:h:mediatek:mt8797:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : * (string)

versionType : custom (string)

}

]

}

]

metrics : [ »

0 : { »

cvssV3_1 : { »

scope : UNCHANGED (string)

version : 3.1 (string)

baseScore : 6.5 (number)

attackVector : NETWORK (string)

baseSeverity : MEDIUM (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N (string)

integrityImpact : NONE (string)

userInteraction : REQUIRED (string)

attackComplexity : LOW (string)

availabilityImpact : NONE (string)

privilegesRequired : NONE (string)

confidentialityImpact : HIGH (string)

}

1 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-06-03T18:16:36.426035Z (string)

id : CVE-2024-20069 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-07-31T20:21:58.882Z (string)

}

1 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-01T21:52:31.659Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://corp.mediatek.com/product-security-bulletin/June-2024 (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://corp.mediatek.com/product-security-bulletin/June-2024", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T21:52:31.659Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2024-20069", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-06-03T18:16:36.426035Z"}}}], "affected": [{"cpes": ["cpe:2.3:h:mediatek:mt6833:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6833", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6853:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6853", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6855:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6855", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6873:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6873", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6875:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6875", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6875t:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6875t", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6877:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6877", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6883:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6883", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6885:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6885", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6889:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6889", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6891:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6891", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt6893:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt6893", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt8675:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt8675", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt8771:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt8771", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt8791t:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt8791t", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:mediatek:mt8797:*:*:*:*:*:*:*:*"], "vendor": "mediatek", "product": "mt8797", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-03T18:22:47.046Z"}}], "cna": {"affected": [{"vendor": "MediaTek, Inc.", "product": "MT6833, MT6853, MT6855, MT6873, MT6875, MT6875T, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893, MT8675, MT8771, MT8791T, MT8797", "versions": [{"status": "affected", "version": "Modem NR15"}]}], "references": [{"url": "https://corp.mediatek.com/product-security-bulletin/June-2024"}], "descriptions": [{"lang": "en", "value": "In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-757", "description": "CWE-757 Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')"}]}], "providerMetadata": {"orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374", "shortName": "MediaTek", "dateUpdated": "2024-06-06T02:12:39.404Z"}}}, "cveMetadata": {"cveId": "CVE-2024-20069", "state": "PUBLISHED", "dateUpdated": "2024-08-01T21:52:31.659Z", "dateReserved": "2023-11-02T13:35:35.171Z", "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374", "datePublished": "2024-06-03T02:04:48.667Z", "assignerShortName": "MediaTek"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://corp.mediatek.com/product-security-bulletin/June-2024 (string)

tags : [ »

0 : x_transferred (string)

]

}

]

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-01T21:52:31.659Z (string)

}

1 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

cvssV3_1 : { »

scope : UNCHANGED (string)

version : 3.1 (string)

baseScore : 6.5 (number)

attackVector : NETWORK (string)

baseSeverity : MEDIUM (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N (string)

integrityImpact : NONE (string)

userInteraction : REQUIRED (string)

attackComplexity : LOW (string)

availabilityImpact : NONE (string)

privilegesRequired : NONE (string)

confidentialityImpact : HIGH (string)

}

1 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-20069 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-06-03T18:16:36.426035Z (string)

}

]

affected : [ »

0 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6833:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6833 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

1 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6853:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6853 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

2 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6855:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6855 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

3 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6873:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6873 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

4 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6875:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6875 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

5 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6875t:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6875t (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

6 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6877:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6877 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

7 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6883:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6883 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

8 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6885:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6885 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

9 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6889:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6889 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

10 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6891:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6891 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

11 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt6893:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt6893 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

12 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt8675:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt8675 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

13 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt8771:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt8771 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

14 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt8791t:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt8791t (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

15 : { »

cpes : [ »

0 : cpe:2.3:h:mediatek:mt8797:*:*:*:*:*:*:*:* (string)

]

vendor : mediatek (string)

product : mt8797 (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : * (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-06-03T18:22:47.046Z (string)

}

]

cna : { »

affected : [ »

0 : { »

vendor : MediaTek, Inc. (string)

product : MT6833, MT6853, MT6855, MT6873, MT6875, MT6875T, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893, MT8675, MT8771, MT8791T, MT8797 (string)

versions : [ »

0 : { »

status : affected (string)

version : Modem NR15 (string)

}

]

}

]

references : [ »

0 : { »

url : https://corp.mediatek.com/product-security-bulletin/June-2024 (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : CWE (string)

cweId : CWE-757 (string)

description : CWE-757 Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade') (string)

}

]

}

]

providerMetadata : { »

orgId : ee979b05-11f8-4f25-a7e0-a1fa9c190374 (string)

shortName : MediaTek (string)

dateUpdated : 2024-06-06T02:12:39.404Z (string)

}

cveMetadata : { »

cveId : CVE-2024-20069 (string)

state : PUBLISHED (string)

dateUpdated : 2024-08-01T21:52:31.659Z (string)

dateReserved : 2023-11-02T13:35:35.171Z (string)

assignerOrgId : ee979b05-11f8-4f25-a7e0-a1fa9c190374 (string)

datePublished : 2024-06-03T02:04:48.667Z (string)

assignerShortName : MediaTek (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:mediatek:nr15:-:*:*:*:*:*:*:*", "matchCriteriaId": "E30A2D2E-6A72-4070-A471-EEE75F7D07F2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*", "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*", "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*", "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*", "matchCriteriaId": "F6B8A36E-C5FB-44AE-A1C3-50EBF4C68F6B", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*", "matchCriteriaId": "80BDC5EC-E822-4BC7-8C0D-E8AD8396E8FE", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6875t:-:*:*:*:*:*:*:*", "matchCriteriaId": "F883C6D3-1724-4553-9EFC-3D204FF3CAA3", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*", "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*", "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*", "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*", "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*", "matchCriteriaId": "D8E91CA4-CA5B-40D1-9A96-2B875104BCF4", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*", "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*", "matchCriteriaId": "03E6123A-7603-4EAB-AFFB-229E8A040709", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*", "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*", "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*", "matchCriteriaId": "2B469BF4-5961-42E9-814B-1BE06D182E45", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430."}, {"lang": "es", "value": "En el m\u00f3dem, existe una posible selecci\u00f3n de algoritmos menos seguros durante el IKE de VoWiFi debido a que falta una verificaci\u00f3n de degradaci\u00f3n de DH. Esto podr\u00eda conducir a la divulgaci\u00f3n remota de informaci\u00f3n sin necesidad de privilegios de ejecuci\u00f3n adicionales. Se necesita la interacci\u00f3n del usuario para la explotaci\u00f3n. ID de parche: MOLY01286330; ID del problema: MSV-1430."}], "id": "CVE-2024-20069", "lastModified": "2025-04-25T18:38:24.040", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-06-03T02:15:08.977", "references": [{"source": "security@mediatek.com", "tags": ["Vendor Advisory"], "url": "https://corp.mediatek.com/product-security-bulletin/June-2024"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://corp.mediatek.com/product-security-bulletin/June-2024"}], "sourceIdentifier": "security@mediatek.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-757"}], "source": "security@mediatek.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:mediatek:nr15:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E30A2D2E-6A72-4070-A471-EEE75F7D07F2 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 9814939B-F05E-4870-90C0-7C0F6BAAEB39 (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 366F1912-756B-443E-9962-224937DD7DFB (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F6B8A36E-C5FB-44AE-A1C3-50EBF4C68F6B (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 80BDC5EC-E822-4BC7-8C0D-E8AD8396E8FE (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:mediatek:mt6875t:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F883C6D3-1724-4553-9EFC-3D204FF3CAA3 (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 15E2EC3F-9FB3-488B-B1C1-2793A416C755 (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* (string)

matchCriteriaId : DD64413C-C774-4C4F-9551-89E1AA9469EE (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3B787DC3-8E5A-4968-B20B-37B6257FAAE2 (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D8E91CA4-CA5B-40D1-9A96-2B875104BCF4 (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 213B5C7F-D965-4312-9CDF-4F06FA77D401 (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 03E6123A-7603-4EAB-AFFB-229E8A040709 (string)

vulnerable : false (boolean)

}

13 : { »

criteria : cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 0D09F23D-D023-4A60-B426-61251FDD8A5A (string)

vulnerable : false (boolean)

}

14 : { »

criteria : cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 1BB05B1D-77C9-4E42-91AD-9F087413DC20 (string)

vulnerable : false (boolean)

}

15 : { »

criteria : cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 2B469BF4-5961-42E9-814B-1BE06D182E45 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430. (string)

}

1 : { »

lang : es (string)

value : En el módem, existe una posible selección de algoritmos menos seguros durante el IKE de VoWiFi debido a que falta una verificación de degradación de DH. Esto podría conducir a la divulgación remota de información sin necesidad de privilegios de ejecución adicionales. Se necesita la interacción del usuario para la explotación. ID de parche: MOLY01286330; ID del problema: MSV-1430. (string)

}

]

id : CVE-2024-20069 (string)

lastModified : 2025-04-25T18:38:24.040 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 6.5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : HIGH (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : REQUIRED (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 3.6 (number)

source : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

type : Secondary (string)

}

]

}

published : 2024-06-03T02:15:08.977 (string)

references : [ »

0 : { »

source : security@mediatek.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://corp.mediatek.com/product-security-bulletin/June-2024 (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://corp.mediatek.com/product-security-bulletin/June-2024 (string)

}

]

sourceIdentifier : security@mediatek.com (string)

vulnStatus : Analyzed (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-757 (string)

}

]

source : security@mediatek.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-Other (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction Required

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction Required

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object