Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2025-10238

Summary
Assigner-lenovo
Assigner Org ID-da227ddf-6e25-4b41-b023-0f976dcaca4b
Published At-10 Jun, 2026 | 14:11
Updated At-11 Jun, 2026 | 03:55
Rejected At-
Credits

During an internal security assessment, a potential out-of-bounds write vulnerability was discovered in the BIOS of some ThinkPad products could allow a privileged local user to execute code in System Management Mode (SMM).

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
â–¼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:lenovo
Assigner Org ID:da227ddf-6e25-4b41-b023-0f976dcaca4b
Published At:10 Jun, 2026 | 14:11
Updated At:11 Jun, 2026 | 03:55
Rejected At:
â–¼CVE Numbering Authority (CNA)

During an internal security assessment, a potential out-of-bounds write vulnerability was discovered in the BIOS of some ThinkPad products could allow a privileged local user to execute code in System Management Mode (SMM).

Affected Products
Vendor
Lenovo Group LimitedLenovo
Product
X13 Gen 6 (Type 21RK, 21RL) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.12 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Carbon 13th Gen (Type 21NX, 21NY) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.15 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P16v Gen 3 (Type 21RS, 21RT) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before BIOS: 1.13 / ECFW: 1.09 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L16 Gen 1 (Type 21L7 21L8) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.40 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 6 (Type 21TB, 21TC) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.11 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P14s Gen 6 (Type 21QT, 21QU) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before UEFI BIOS V1.22/ECP V1.13 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L13 Gen 6 (Type 21RB, 21RC) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.15 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L14 Gen 6 (Type 21SE, 21SF) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.14 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E16 Gen 3 (Type 22AY, 22B0) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.38 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L16 Gen 2 (Type 21SC, 21SD) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.13 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Gen 6 (Type 21RM, 21RN) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.62/1.12 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 6 (Type 21R1, 21R2) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.10 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 2-in-1 Gen 9 (Type 21KE, 21KF) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.45 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Fold 16 Gen 1 (Type 21ES, 21ET) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.25 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Z16 Gen 2 (Type 21JX, 21JY) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.37 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P16v Gen 1 (Type 21FE, 21FF) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.65/1.13 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Gen 4 (Type 21J3, 21J4) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.37 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 4 (Type 21F8, 21F9) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.28 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P14s Gen 4 (Type 21K5, 21K6) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.47 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P1 Gen 6 (Type 21FV, 21FW) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.38 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P16v Gen 1 (Type 21FC, 21FD) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before BIOS: 1.40 / ECFW: 1.09 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P16 Gen 2 (Type 21FA, 21FB) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before BIOS: 1.61 / ECFW: 1.57 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Yoga Gen 4 (Type 21F2, 21F3) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.22 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P16s Gen 2 (Type 21HK, 21HL) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.51 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E14 Gen 5 (Type 21JR, 21JS) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.29 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 4 (Type 21F6, 21F7) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.23 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
ThinkPad R14 Gen 5 Type 21JM PRC BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.41 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L14 Gen 4 (Type 21H1, 21H2) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.34 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L13 Gen 4 (Type 21FG, 21FH) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.24 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Nano Gen 3 (Type 21K1, 21K2) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.28 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
S2 Yoga Gen 8 (Types 21FU) China Only Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.28 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L15 Gen 4 (Type 21H7, 21H8) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.27 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Yoga 8th Gen (Type 21HQ, 21HR) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.37 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 6 (Type 21M1, 21M2) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.62/1.12 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P15v Gen 3 (Type 21EN 21EM) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 through 1.28 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P16 Gen 1 (Type 21D6, 21D7) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.69 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 2-in-1 Gen 10 (Type 21NU, 21NV) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.39 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X9-15 Gen 1 (Type 21Q6, 21Q7) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.17 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X9-14 Gen 1 (Type 21QA, 21QB) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.21 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 5 (Type 21LS, 21LT) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.14 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L14 Gen 5 (Type 21L1, 21L2) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.24 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E14 Gen 6 (Type 21M3, 21M4) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.27 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E16 Gen 3 (Type 21SR, 21SS) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.11 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14 Gen 3 (Type 21AH, 21AJ) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.45/1.25 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T15p Gen 3 (Type 21DA 21DB) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.67 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P1 Gen 5 (Type 21DC 21DD) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.29 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 3 (Type 21CQ 21CR) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.51 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P14s Gen 3 (Type 21J5, 21J6) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.63 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Z16 Gen 1 (Type 21D4, 21D5) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.76 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 3 (Type 21BR 21BS) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.48 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L14 Gen 3 (type 21C1, 21C2) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.44 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Yoga Gen 3 (Type 21AW 21AX) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.25 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L13 Yoga Gen 3 (Type 21B5, 21B6) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.31 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E14 Gen 4 (type 21E3, 21E4) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.34 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Nano Gen 2 (Type 21E8 21E9) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.32 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E15 Gen 4 (type 21ED 21EE) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.27 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
ThinkPad S2 Gen 7 Type 21BD BIOS
Default Status
unaffected
Versions
Affected
  • From 0 through 1.36 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Yoga 7th Gen (Type 21CD, 21CE) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.52 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L14 Gen 3 (type 21C5, 21C6) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.36 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
ThinkPad S2 Yoga Gen 6 Type 20VN China Only BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.38/1.36 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Yoga 6th Gen (Type 20XY, 20Y0) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.75 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E15 Gen 3 (Type 20YG, 20YH, 20YJ, 20YK) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.24 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Yoga Gen 2 (Type 20W8, 20W9) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.51 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Gen 2 (Type 20WK, 20WL) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.64 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L14 Gen 2 (type 20X5, 20X6) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.36 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T15g Gen 1 (type 20UR 20US) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.97 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Gen 2 (Type 20XH, 20XJ) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.36 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T15p Gen 2 (Type 21A7, 21A8) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.83 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P14s Gen 2 (type 21A0, 21A1) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.33 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
ThinkPad S2 Yoga Gen 6 Type 21AG China Only BIOS
Default Status
unaffected
Versions
Affected
  • From 0 through 1.38 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Extreme 4th Gen (Type 20Y5, 20Y6) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.33 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P17 Gen 2 (type 20YU, 20YV) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.97 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Titanium (Type 20QA, 20QB) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.37 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Nano Gen 1 (Type 20UN 20UQ) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.68 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X12 Detachable Gen 1 (Type 20UW, 20UV) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 through 1.40 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E16 Gen 2 (Type 21MA, 21MB) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.21 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Gen 5 (Type 21LU, 21LV) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.17 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L14 Gen 2 Type 20X1 20X2 Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.73 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E16 Gen 3 (Type 21ST, 21SU) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.21 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T16 Gen 4 (Type 21QE, 21QF) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.10 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T16 Gen 4 (Type 22AW, 22AX) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.08 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T15 Gen 2 (Type 20W4, 20W5) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.69/1.21 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Fold Gen 1 (Type 20RK, 20RL) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.34 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Extreme 3rd Gen (Type 20TK, 20TL) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.37 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s (Type 20T0, 20T1) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.37 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T15 (type 20S6, 20S7) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.34 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X13 Yoga Gen 1 (Type 20SX, 20SY) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.57 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Yoga 5th Gen (Type 20UB, 20UC) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.41 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X390 Yoga (Type 20NN, 20NQ) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 2.05 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Yoga 4th Gen (Type 20SA, 20SB) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.66/1.55 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X390 (Type 20SC, 20SD) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.87/1.32 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P73 (type 20QR, 20QS) Laptop (Thinkpad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 2.01 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T490 (Type 20N2, 20N3) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.85/1.26 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X1 Extreme 2nd Gen (Type 20QV, 20QW) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.55 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L390 (type 20NR, 20NS) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.53 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L13 (type 20R3, 20R4) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.45 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L13 Gen 5 (Type 21LB, 21LC) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.21 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
E14 Gen 7 (Type 21T9, 21TA) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.11 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P14s Gen 6 (Type 21QL, 21QM) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.17 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L13 2-in-1 Gen 6 (Type 21R7, 21R8) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.10 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
L14 Gen 6 (Type 21S6, 21S7) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.06 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14s Gen 6 (Type 21QX, 21QY) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.14 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P1 Gen 7 (Type 21KV, 21KW) Laptop (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.17 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P14s Gen 5 (Type 21G2, 21G3) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.26 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T14 Gen 5 (Type 21MC, 21MD) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.18 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
X12 Detachable Gen 2 (Type 21LK, 21LL) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.21 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
T16 Gen 3 (Type 21MN, 21MQ) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.16 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
P16v Gen 2 (Type 21KX, 21KY) Laptops (ThinkPad) BIOS
Default Status
unaffected
Versions
Affected
  • From 0 before 1.18 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-787CWE-787: Out-of-bounds Write
Type: CWE
CWE ID: CWE-787
Description: CWE-787: Out-of-bounds Write
Metrics
VersionBase scoreBase severityVector
4.08.4HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3.16.7MEDIUM
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Version: 4.0
Base score: 8.4
Base severity: HIGH
Vector:
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Version: 3.1
Base score: 6.7
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Update to the version (or newer) as recommended in the advisory: https://support.lenovo.com/us/en/product_security/LEN-218282

Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://support.lenovo.com/us/en/product_security/LEN-218282
vendor-advisory
Hyperlink: https://support.lenovo.com/us/en/product_security/LEN-218282
Resource:
vendor-advisory
â–¼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
â–¼National Vulnerability Database (NVD)
nvd.nist.gov
Source:psirt@lenovo.com
Published At:10 Jun, 2026 | 15:16
Updated At:10 Jun, 2026 | 19:43

During an internal security assessment, a potential out-of-bounds write vulnerability was discovered in the BIOS of some ThinkPad products could allow a privileged local user to execute code in System Management Mode (SMM).

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary4.08.4HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary3.16.7MEDIUM
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Type: Secondary
Version: 4.0
Base score: 8.4
Base severity: HIGH
Vector:
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Type: Primary
Version: 3.1
Base score: 6.7
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Weaknesses
CWE IDTypeSource
CWE-787Secondarypsirt@lenovo.com
CWE ID: CWE-787
Type: Secondary
Source: psirt@lenovo.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://support.lenovo.com/us/en/product_security/LEN-218282psirt@lenovo.com
N/A
Hyperlink: https://support.lenovo.com/us/en/product_security/LEN-218282
Source: psirt@lenovo.com
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

694Records found
CVE-2022-32640
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 3.15%
||
7 Day CHG~0.00%
Published-03 Jan, 2023 | 00:00
Updated-10 Apr, 2025 | 16:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In meta wifi, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441652; Issue ID: ALPS07441652.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt8789mt8766androidmt6855mt6757mt8797mt6789mt6580mt8321mt6885mt6883mt8167mt6757cmt6781mt6873mt6768mt6853tmt6757chmt6761mt6891mt6895mt8362amt8768mt6737mt6833mt6889mt6731mt8168mt8185mt6769mt6893mt8173mt8765mt6771mt6757cdmt6877mt6879mt6983mt8781mt8675mt6785mt8365mt8666mt8786mt6763mt6739mt6762mt8791mt6779mt6735mt6875mt8385mt6765mt8788mt8791tmt6753mt6853MT6580, MT6731, MT6735, MT6737, MT6739, MT6753, MT6757, MT6757C, MT6757CD, MT6757CH, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6889, MT6891, MT6893, MT6895, MT6983, MT8167, MT8168, MT8173, MT8185, MT8321, MT8362A, MT8365, MT8385, MT8666, MT8675, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32634
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In ccci, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138646; Issue ID: ALPS07138646.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6879mt6855mt6883mt8788mt6873mt6765mt6768mt8768mt6877mt8321mt8791mt8797mt8666mt6983mt6781mt8385androidmt6785mt6833mt8786mt6889mt6885mt6779mt6853mt6893mt8765mt8675mt6895mt8789mt6761mt8766MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8321, MT8385, MT8666, MT8675, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2026-20441
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 0.41%
||
7 Day CHG~0.00%
Published-02 Mar, 2026 | 08:39
Updated-30 Mar, 2026 | 13:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10432500; Issue ID: MSV-5803.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt8793mt6899androidmt2718mt8678mt6991MediaTek chipset
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32599
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 3.15%
||
7 Day CHG-0.04%
Published-06 Apr, 2023 | 00:00
Updated-12 Feb, 2025 | 16:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In rpmb, there is a possible out of bounds write due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07460390; Issue ID: ALPS07460390.

Action-Not Available
Vendor-MediaTek Inc.Google LLC
Product-androidmt6757cdmt6769mt6889mt6883mt6853tmt8781mt6739mt8771mt6877mt6757cmt6833mt8786mt6757mt6761mt6753mt6789mt6763mt6853mt8321mt8385mt6879mt8765mt8185mt8788mt6771mt6983mt6765mt6785mt8768mt8789mt6895mt6580mt6737mt6781mt6731mt6893mt8766mt6891mt6873mt6735mt6875mt6762mt6779mt6855mt6757chmt6885mt6768MT6580, MT6731, MT6735, MT6737, MT6739, MT6753, MT6757, MT6757C, MT6757CD, MT6757CH, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6889, MT6891, MT6893, MT6895, MT6983, MT8185, MT8321, MT8385, MT8765, MT8766, MT8768, MT8771, MT8781, MT8786, MT8788, MT8789
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32646
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 1.88%
||
7 Day CHG~0.00%
Published-03 Jan, 2023 | 00:00
Updated-10 Apr, 2025 | 16:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In gpu drm, there is a possible stack overflow due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07363501; Issue ID: ALPS07363501.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt8766androidmt6833mt6889mt6855mt6895mt6893mt8781mt6877mt6879mt6983mt6789mt8675mt6885mt6785mt8791mt6883mt6779mt6781mt6765mt6873mt6768mt6853mt6761MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8675, MT8766, MT8781, MT8791
CWE ID-CWE-787
Out-of-bounds Write
CVE-2026-20453
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.06%
||
7 Day CHG~0.00%
Published-01 Jun, 2026 | 03:20
Updated-02 Jun, 2026 | 03:55
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10886526; Issue ID: MSV-6791.

Action-Not Available
Vendor-MediaTek Inc.
Product-mt6889_firmwaremt8765_firmwaremt6985mt6991_firmwaremt6739mt8673_firmwaremt8788mt8788_firmwaremt6886mt6761mt8798_firmwaremt6855_firmwaremt6885mt6781_firmwaremt6768mt6878mt8673mt6835_firmwaremt6893_firmwaremt6853_firmwaremt6983_firmwaremt8766_firmwaremt6885_firmwaremt6878_firmwaremt6983mt6897mt6883_firmwaremt6883mt6877mt6991mt6895mt6781mt8781mt6897_firmwaremt6989mt6765_firmwaremt8791tmt6789mt6879_firmwaremt6889mt8765mt6765mt8768_firmwaremt6768_firmwaremt6886_firmwaremt8781_firmwaremt6893mt6985_firmwaremt8768mt6899_firmwaremt6739_firmwaremt8798mt6761_firmwaremt8766mt8910_firmwaremt8786_firmwaremt8786mt8793mt6855mt6989_firmwaremt6853mt6877_firmwaremt8793_firmwaremt6835mt6789_firmwaremt8797_firmwaremt8797mt6895_firmwaremt8910mt6879mt6899mt8791t_firmwareMediaTek chipset
CWE ID-CWE-787
Out-of-bounds Write
CVE-2026-20428
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 0.41%
||
7 Day CHG~0.00%
Published-02 Mar, 2026 | 08:39
Updated-30 Mar, 2026 | 13:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5536.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6739mt6893mt8793mt6993mt6878mt6853mt6897mt6879androidmt6855mt6885mt6889mt6765mt8678mt6895mt6761mt6768mt6789mt6781mt6886mt6983mt6899mt6883mt6877mt6985mt8196mt6833mt6989mt6835mt6991MediaTek chipset
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32594
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 3.15%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07446207; Issue ID: ALPS07446207.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6879mt6883mt8788mt6765mt8768mt6877mt6891mt6853tmt8781mt8385mt6785mt6885mt6853mt6893mt6895mt8766mt6855mt6873mt6768mt8791mt8797mt6769mt6789androidmt6833mt8786mt6889mt6762mt6875mt6779mt8765mt8789mt6781MT6762, MT6765, MT6768, MT6769, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6889, MT6891, MT6893, MT6895, MT8385, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32619
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In keyinstall, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07439659; Issue ID: ALPS07439659.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6879mt6757chmt6883mt6580mt8788mt6765mt8768mt6877mt8321mt6739mt6891mt6853tmt8781mt6983mt8385mt6785mt6771mt6737mt6757cdmt6753mt6885mt6853mt6893mt6895mt6761mt8766mt6855mt6757cmt6873mt6731mt6768mt8791tmt8791mt8185mt8797mt6763mt6735mt6769mt8666mt6757mt6789androidmt6833mt8786mt6889mt8667mt6762mt6875mt6779mt8765mt8789mt6781MT6580, MT6731, MT6735, MT6737, MT6739, MT6753, MT6757, MT6757C, MT6757CD, MT6757CH, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6889, MT6891, MT6893, MT6895, MT6983, MT8185, MT8321, MT8385, MT8666, MT8667, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32632
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 3.15%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441630; Issue ID: ALPS07441630.

Action-Not Available
Vendor-yoctoprojectGoogle LLCMediaTek Inc.
Product-mt8365mt6580mt6765mt8768mt6877mt8518mt7668mt6983yoctomt6785mt6771mt6885mt6853mt7902mt8766mt6873mt8532mt6768mt8695mt8791mt8797mt6735mt7663mt8666androidmt6833mt8786mt8667mt6779mt7921mt7933mt8168mt8696mt8675mt8789MT6580, MT6735, MT6765, MT6768, MT6771, MT6779, MT6785, MT6833, MT6853, MT6873, MT6877, MT6885, MT6983, MT7663, MT7668, MT7902, MT7921, MT7933, MT8168, MT8365, MT8518, MT8532, MT8666, MT8667, MT8675, MT8695, MT8696, MT8766, MT8768, MT8786, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32623
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 3.15%
||
7 Day CHG~0.00%
Published-03 Jan, 2023 | 00:00
Updated-10 Apr, 2025 | 19:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In mdp, there is a possible out of bounds write due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07342114; Issue ID: ALPS07342114.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt8365androidmt6855mt8168mt8781mt6879mt6983mt6789mt6895MT6789, MT6855, MT6879, MT6895, MT6983, MT8168, MT8365, MT8781
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32636
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG-0.02%
Published-03 Jan, 2023 | 00:00
Updated-10 Apr, 2025 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07510064; Issue ID: ALPS07510064.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt8789mt8766androidmt6855mt6757mt8797mt6789mt6580mt8321mt6885mt6883mt6757cmt6781mt6873mt6768mt6853tmt6757chmt6761mt6891mt6895mt8768mt8667mt6737mt6833mt6889mt6731mt8185mt6769mt6893mt8765mt6771mt6757cdmt6877mt6879mt6983mt6785mt8666mt8786mt6763mt6739mt6762mt8791mt6779mt6735mt6875mt8385mt6765mt8788mt8791tmt6753mt6853MT6580, MT6731, MT6735, MT6737, MT6739, MT6753, MT6757, MT6757C, MT6757CD, MT6757CH, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6889, MT6891, MT6893, MT6895, MT6983, MT8185, MT8321, MT8385, MT8666, MT8667, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32625
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In display, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07326216; Issue ID: ALPS07326216.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6879mt6855mt8365mt6883mt6873mt6765mt6768mt6877mt8791mt8781mt6983mt6789mt6781androidmt6785mt6833mt6889mt6885mt6779mt8168mt6853mt6893mt8675mt6895mt6761mt8766MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8168, MT8365, MT8675, MT8766, MT8781, MT8791
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-33267
Matching Score-4
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-4
Assigner-Qualcomm, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.09% / 25.75%
||
7 Day CHG+0.05%
Published-06 Jun, 2023 | 07:38
Updated-03 Aug, 2024 | 08:01
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper restriction of operations within the bounds of memory buffer in Linux

Memory corruption in Linux while sending DRM request.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcn3991_firmwarewcn3991wcd9380_firmwaresa6150p_firmwaresa8145p_firmwareqcs610sdm429wsd865_5gqca6564ausm8150-acsdm429sdm429w_firmwarewcn3950_firmwarewcd9380sa8150p_firmwareqca6420_firmwaresnapdragon_wear_4100\+_platform_firmwareqca6390_firmwareqcs410wcd9370sxr2130qca6574asnapdragon_wear_4100\+_platformwcn685x-5_firmwareqca6564qca6426wcn685x-1qca6430_firmwarewcn3980sm8250-abwcn3998wcn3950wcn3660bsd855wsa8815sdm429_firmwaresnapdragon_xr2_5g_platform_firmwareqca6426_firmwarewcn3660b_firmwaresa8155snapdragon_x55_5g_modem-rf_systemqca6574a_firmwareqca6574au_firmwaresdx55_firmwarewcn3680b_firmwarewcn3998_firmwarewcn3980_firmwaresnapdragon_x55_5g_modem-rf_system_firmwaresm8250-ab_firmwareqca6391wcn3610_firmwareqca6420qca6436_firmwaresnapdragon_x50_5g_modem-rf_system_firmwareaqt1000_firmwareqca6564au_firmwaresa6155p_firmwaresnapdragon_xr2_5g_platformsa8155_firmwarewcn685x-5sm8250_firmwaresm8250-acqca6430qca6574ausa6145p_firmwaresa8155p_firmwaresa8195pwsa8810_firmwarewcd9341_firmwarewsa8810qca6436sa6155pqcs610_firmwaresm8150-ac_firmwareqsm8250sa6145pwcn3680bwcn685x-1_firmwareqca6564_firmwaresm8150_firmwaresxr2130_firmwarewcd9341qca6696_firmwaresa8145pqca6696qca6391_firmwareqca6390wcd9370_firmwareaqt1000sa8150psa6150psdx55snapdragon_x50_5g_modem-rf_systemsa8155psm8250-ac_firmwaresm8250sd855_firmwaresd865_5g_firmwaresm8150wcn3620_firmwarewsa8815_firmwarewcn3620sa8195p_firmwareqcs410_firmwarewcn3610qsm8250_firmwareSnapdragonaqt1000_firmwareqca6564au_firmwaresa6155p_firmwarewcd9380_firmwaresa6150p_firmwaresa8145p_firmwarefastconnect_6900_firmwaresa8155_firmwaresa6145p_firmwaresa8155p_firmwaresdm429w_firmwarewcn3950_firmwarewsa8810_firmwaresa8150p_firmwarewcd9341_firmwareqca6420_firmwareqcs610_firmwareqca6564_firmwaresxr2130_firmwareqca6696_firmwareqca6430_firmwareqca6391_firmwaresnapdragon_855_mobile_platform_firmwarewcd9370_firmwaresd855_firmwaresd865_5g_firmwaresnapdragon_xr2_5g_platform_firmwarewcn3620_firmwareqca6426_firmwarewcn3660b_firmwarewsa8815_firmwareqca6574a_firmwarefastconnect_6200_firmwareqca6574au_firmwaresa8195p_firmwaresdx55_firmwaresnapdragon_429_mobile_platform_firmwaresnapdragon_865_5g_mobile_platform_firmwarewcn3680b_firmwarefastconnect_6800_firmwareqcs410_firmwaresnapdragon_x55_5g_modem-rf_system_firmwarewcn3980_firmwarewcn3610_firmwareqca6436_firmwaresnapdragon_x50_5g_modem-rf_system_firmwareqsm8250_firmware
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32611
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.04% / 13.37%
||
7 Day CHG+0.03%
Published-08 Nov, 2022 | 00:00
Updated-01 May, 2025 | 20:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07340373; Issue ID: ALPS07340373.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6983androidmt6895mt6879MT6879, MT6895, MT6983
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32622
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.52%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In gz, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07363786; Issue ID: ALPS07363786.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-androidmt6879mt6855mt6895mt8781mt6983mt6789MT6789, MT6855, MT6879, MT6895, MT6983, MT8781
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32637
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG-0.02%
Published-03 Jan, 2023 | 00:00
Updated-10 Apr, 2025 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In hevc decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07491374; Issue ID: ALPS07491374.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt8789mt6785mt6885mt6833androidmt6889mt8185mt6883mt6781mt6873mt6853tmt6853MT6781, MT6785, MT6833, MT6853, MT6853T, MT6873, MT6883, MT6885, MT6889, MT8185, MT8789
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32593
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-07 Oct, 2022 | 00:00
Updated-03 Aug, 2024 | 07:46
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In vowe, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138493; Issue ID: ALPS07138493.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-androidmt6983MT6983
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32626
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In display, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07326239; Issue ID: ALPS07326239.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6879mt6855mt8365mt6883mt6873mt6765mt6768mt6877mt8791mt8781mt6983mt6789mt6781androidmt6785mt6833mt6889mt6885mt6779mt8168mt6853mt6893mt6895mt6761mt8766MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8168, MT8365, MT8766, MT8781, MT8791
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32620
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In mpu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07541753; Issue ID: ALPS07541753.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-androidmt6833mt6873mt6877mt6853mt8791mt6781mt8781mt6789MT6781, MT6789, MT6833, MT6853, MT6873, MT6877, MT8781, MT8791
CWE ID-CWE-787
Out-of-bounds Write
CVE-2026-20444
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 0.41%
||
7 Day CHG~0.00%
Published-02 Mar, 2026 | 08:39
Updated-30 Mar, 2026 | 13:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In display, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436995; Issue ID: MSV-5721.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6739mt6893mt6878mt6853mt8186mt6897mt6879androidmt8673mt6855mt6889mt6765mt8795tmt6761mt6768mt8883mt6789mt6886mt6983mt8768mt8766mt6899mt6877mt8798mt6985mt6833mt8667mt6835mt6781mt6991mt8793mt8771mt8796mt8873mt6885mt8678mt6895mt8676mt8765mt8781mt6883mt8196mt8791tmt6989mt8188mt6993mt8792MediaTek chipset
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32597
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.52%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07446228; Issue ID: ALPS07446228.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6879mt6883mt8788mt6765mt8768mt6877mt6891mt6853tmt8781mt8385mt6785mt6885mt6853mt6893mt6895mt8766mt6855mt6873mt6768mt8791mt8797mt6769mt6789androidmt6833mt8786mt6889mt6762mt6875mt6779mt8765mt8789mt6781MT6762, MT6765, MT6768, MT6769, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6889, MT6891, MT6893, MT6895, MT8385, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32631
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 3.15%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07453613; Issue ID: ALPS07453613.

Action-Not Available
Vendor-yoctoprojectGoogle LLCMediaTek Inc.
Product-mt6879mt8365mt6883mt6580mt8788mt6765mt8768mt6877mt6739mt8781mt6983yoctomt8385mt6785mt6771mt6853mt6895mt6761mt8766mt6873mt6768mt8791mt8797mt8666mt6789androidmt6833mt8786mt8667mt6779mt8168mt8675mt8789mt6781MT6580, MT6739, MT6761, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6873, MT6877, MT6879, MT6883, MT6895, MT6983, MT8168, MT8365, MT8385, MT8666, MT8667, MT8675, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-32629
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.52%
||
7 Day CHG~0.00%
Published-05 Dec, 2022 | 00:00
Updated-24 Apr, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310774; Issue ID: ALPS07310774.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-androidmt6855mt6833mt6873mt6877mt6853mt6893mt8791MT6833, MT6853, MT6855, MT6873, MT6877, MT6893, MT8791
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-31602
Matching Score-4
Assigner-NVIDIA Corporation
ShareView Details
Matching Score-4
Assigner-NVIDIA Corporation
CVSS Score-6.4||MEDIUM
EPSS-0.05% / 15.02%
||
7 Day CHG~0.00%
Published-04 Jul, 2022 | 18:10
Updated-03 Aug, 2024 | 07:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap can exploit an out-of-bounds write vulnerability, which may lead to code execution, denial of service, data integrity impact, and information disclosure.

Action-Not Available
Vendor-NVIDIA Corporation
Product-dgx_a100_firmwaredgx_a100NVIDIA DGX A100
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-31601
Matching Score-4
Assigner-NVIDIA Corporation
ShareView Details
Matching Score-4
Assigner-NVIDIA Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.05% / 15.46%
||
7 Day CHG~0.00%
Published-04 Jul, 2022 | 18:10
Updated-03 Aug, 2024 | 07:26
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmbiosPei, which may allow a highly privileged local attacker to cause an out-of-bounds write, which may lead to code execution, denial of service, compromised integrity, and information disclosure.

Action-Not Available
Vendor-NVIDIA Corporation
Product-dgx_a100_firmwaredgx_a100NVIDIA DGX A100
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-2991
Matching Score-4
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-4
Assigner-Red Hat, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.04% / 13.20%
||
7 Day CHG~0.00%
Published-25 Aug, 2022 | 17:24
Updated-03 Aug, 2024 | 00:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This vulnerability allows a local attacker to escalate privileges and execute arbitrary code in the context of the kernel. The attacker must first obtain the ability to execute high-privileged code on the target system to exploit this vulnerability.

Action-Not Available
Vendor-n/aLinux Kernel Organization, Inc
Product-linux_kernelkernel
CWE ID-CWE-122
Heap-based Buffer Overflow
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-30786
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.03% / 9.30%
||
7 Day CHG~0.00%
Published-26 May, 2022 | 00:00
Updated-02 Dec, 2025 | 21:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate in NTFS-3G through 2021.8.22.

Action-Not Available
Vendor-tuxeran/aFedora ProjectDebian GNU/Linux
Product-debian_linuxntfs-3gfedoran/a
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-30788
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.03% / 9.30%
||
7 Day CHG~0.00%
Published-26 May, 2022 | 00:00
Updated-02 Dec, 2025 | 21:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc in NTFS-3G through 2021.8.22.

Action-Not Available
Vendor-tuxeran/aFedora ProjectDebian GNU/Linux
Product-debian_linuxntfs-3gfedoran/a
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-30789
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.03% / 9.30%
||
7 Day CHG~0.00%
Published-26 May, 2022 | 00:00
Updated-02 Dec, 2025 | 21:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array in NTFS-3G through 2021.8.22.

Action-Not Available
Vendor-tuxeran/aFedora ProjectDebian GNU/Linux
Product-debian_linuxntfs-3gfedoran/a
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2024-33041
Matching Score-4
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-4
Assigner-Qualcomm, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.07% / 20.47%
||
7 Day CHG~0.00%
Published-06 Jan, 2025 | 10:33
Updated-11 Aug, 2025 | 15:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use of Out-of-range Pointer Offset in Computer Vision

Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm8550_firmwaresa6150p_firmwarewsa8845_firmwarewsa8832sa6155p_firmwarewsa8840qam8295p_firmwareqcs8550_firmwareqca6696snapdragon_8_gen_2_mobile_firmwarewcd9385wcd9395_firmwaresxr1230p_firmwarewcd9390_firmwaresnapdragon_8_gen_2_mobilesg8275pwsa8832_firmwaresa8195p_firmwarewcd9395ssg2125psg8275p_firmwaresnapdragon_8\+_gen_2_mobileqca6574au_firmwaresa8195pqam8295pqca6574auwcd9390wsa8845h_firmwaresm8550p_firmwareqcm8550qcs6490_firmwarewsa8835wsa8840_firmwaresa8295p_firmwareqca6696_firmwarewsa8845hwcd9380_firmwaresa6150psa8155p_firmwaresa8155pwsa8830sm8550psa6145pssg2115psnapdragon_8_gen_3_mobile_firmwarefastconnect_7800_firmwarefastconnect_6900ssg2125p_firmwarewcd9385_firmwarefastconnect_6900_firmwaresa8295pqcs8550sa6145p_firmwarewcd9380fastconnect_7800sa8145p_firmwaresa8150psnapdragon_8\+_gen_2_mobile_firmwaresa8150p_firmwarewsa8845sa6155pvideo_collaboration_vc3_platform_firmwaresa8145pwsa8835_firmwaressg2115p_firmwaresxr1230pqcs6490snapdragon_8_gen_3_mobilewsa8830_firmwarevideo_collaboration_vc3_platformSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CWE ID-CWE-823
Use of Out-of-range Pointer Offset
CVE-2025-7519
Matching Score-4
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-4
Assigner-Red Hat, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.03% / 10.50%
||
7 Day CHG~0.00%
Published-14 Jul, 2025 | 13:35
Updated-26 Feb, 2026 | 17:50
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Polkit: xml policy file with a large number of nested elements may lead to out-of-bounds write

A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be triggered. This issue can lead to a crash or other unexpected behavior, and arbitrary code execution is not discarded. To exploit this flaw, a high-privilege account is needed as it's required to place the malicious policy file properly.

Action-Not Available
Vendor-Red Hat, Inc.
Product-enterprise_linuxopenshift_container_platformRed Hat Enterprise Linux 9Red Hat OpenShift Container Platform 4Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 8Red Hat Enterprise Linux 7
CWE ID-CWE-787
Out-of-bounds Write
CVE-2024-31496
Matching Score-4
Assigner-Fortinet, Inc.
ShareView Details
Matching Score-4
Assigner-Fortinet, Inc.
CVSS Score-6.3||MEDIUM
EPSS-0.07% / 22.22%
||
7 Day CHG~0.00%
Published-12 Nov, 2024 | 18:53
Updated-21 Jan, 2025 | 22:11
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5 and FortiAnalyzer-BigData 7.4.0 and before 7.2.7 allows a privileged attacker to execute unauthorized code or commands via crafted CLI requests.

Action-Not Available
Vendor-Fortinet, Inc.
Product-fortianalyzer_big_datafortimanagerfortianalyzerFortiManagerFortiAnalyzer
CWE ID-CWE-121
Stack-based Buffer Overflow
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26460
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-06 Sep, 2022 | 17:19
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In vow, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032590; Issue ID: ALPS07032590.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6855mt6895mt6873mt6893androidmt6833mt6885mt8797mt6889mt6983mt8791mt6877mt6879mt6853mt6883MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26439
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 18.31%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:59
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420020; Issue ID: GN20220420020.

Action-Not Available
Vendor-MediaTek Inc.
Product-mt7615mt8981_firmwaremt7603mt7622_firmwaremt7628mt7916_firmwaremt7610mt7612mt7628_firmwaremt7916mt7629_firmwaremt7629mt7603_firmwaremt7613mt7612_firmwaremt7915_firmwaremt7610_firmwaremt7986mt7620mt7615_firmwaremt8981mt7613_firmwaremt7622mt7915mt7986_firmwaremt7620_firmwareMT7603, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915, MT7916, MT7986, MT8981
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26464
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-06 Sep, 2022 | 17:19
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In vow, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032699; Issue ID: ALPS07032699.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6855mt6895mt6873mt6893androidmt6833mt6885mt8797mt6889mt6983mt8791mt6877mt6879mt6853mt6883MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26435
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:58
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138435; Issue ID: ALPS07138435.

Action-Not Available
Vendor-yoctoprojectGoogle LLCMediaTek Inc.
Product-mt8175mt6873mt6893mt8675mt8765mt8788mt6983mt8666mt8167mt8768mt8789mt8797mt8321mt8362amt8786mt8766mt8167smt8385mt6833mt6885yoctomt6877mt8365mt6853mt6895mt8168androidmt8185mt8791mt8532mt6879mt8173MT6833, MT6853, MT6873, MT6877, MT6879, MT6885, MT6893, MT6895, MT6983, MT8167, MT8167S, MT8168, MT8173, MT8175, MT8185, MT8321, MT8362A, MT8365, MT8385, MT8532, MT8666, MT8675, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CWE ID-CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')
CVE-2022-26438
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 18.31%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:58
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420013; Issue ID: GN20220420013.

Action-Not Available
Vendor-MediaTek Inc.
Product-mt7615mt8981_firmwaremt7603mt7622_firmwaremt7628mt7916_firmwaremt7610mt7612mt7628_firmwaremt7916mt7629_firmwaremt7629mt7603_firmwaremt7613mt7612_firmwaremt7915_firmwaremt7610_firmwaremt7986mt7620mt7615_firmwaremt8981mt7613_firmwaremt7622mt7915mt7986_firmwaremt7620_firmwareMT7603, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915, MT7916, MT7986, MT8981
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26448
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 3.15%
||
7 Day CHG~0.00%
Published-06 Sep, 2022 | 17:19
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In apusys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07063849; Issue ID: ALPS07063849.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6873mt6853tmt6893androidmt6885mt6875mt6889mt6877mt6891mt6883MT6853T, MT6873, MT6875, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26431
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:57
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032553; Issue ID: ALPS07032553.

Action-Not Available
Vendor-yoctoprojectGoogle LLCMediaTek Inc.
Product-mt6873mt6893mt8675mt8765mt8385mt6833mt6885mt8788mt6983yoctomt8666mt6877mt6853mt6895mt8768mt8789androidmt8797mt8185mt8321mt8791mt8532mt8786mt8766mt6879MT6833, MT6853, MT6873, MT6877, MT6879, MT6885, MT6893, MT6895, MT6983, MT8185, MT8321, MT8385, MT8532, MT8666, MT8675, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26441
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 18.31%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:59
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420044; Issue ID: GN20220420044.

Action-Not Available
Vendor-MediaTek Inc.
Product-mt7615mt8981_firmwaremt7603mt7622_firmwaremt7628mt7916_firmwaremt7610mt7612mt7628_firmwaremt7916mt7629_firmwaremt7629mt7603_firmwaremt7613mt7612_firmwaremt7915_firmwaremt7610_firmwaremt7986mt7620mt7615_firmwaremt8981mt7613_firmwaremt7622mt7915mt7986_firmwaremt7620_firmwareMT7603, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915, MT7916, MT7986, MT8981
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26430
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:57
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032521; Issue ID: ALPS07032521.

Action-Not Available
Vendor-yoctoprojectGoogle LLCMediaTek Inc.
Product-mt6873mt6893mt8675mt8765mt8385mt6833mt6885mt8788mt6983yoctomt8666mt6877mt6853mt6895mt8768mt8789androidmt8797mt8185mt8321mt8791mt8532mt8786mt8766mt6879MT6833, MT6853, MT6873, MT6877, MT6879, MT6885, MT6893, MT6895, MT6983, MT8185, MT8321, MT8385, MT8532, MT8666, MT8675, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CWE ID-CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')
CVE-2022-26440
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 18.31%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:59
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420037; Issue ID: GN20220420037.

Action-Not Available
Vendor-MediaTek Inc.
Product-mt7615mt8981_firmwaremt7603mt7622_firmwaremt7628mt7916_firmwaremt7610mt7612mt7628_firmwaremt7916mt7629_firmwaremt7629mt7603_firmwaremt7613mt7612_firmwaremt7915_firmwaremt7610_firmwaremt7986mt7620mt7615_firmwaremt8981mt7613_firmwaremt7622mt7915mt7986_firmwaremt7620_firmwareMT7603, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915, MT7916, MT7986, MT8981
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26455
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 2.26%
||
7 Day CHG~0.00%
Published-06 Sep, 2022 | 17:19
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In gz, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177858; Issue ID: ALPS07177858.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6855mt6895mt6789androidmt6983mt6879MT6789, MT6855, MT6879, MT6895, MT6983
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26475
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.04% / 14.23%
||
7 Day CHG~0.00%
Published-07 Oct, 2022 | 00:00
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310743; Issue ID: ALPS07310743.

Action-Not Available
Vendor-Google LLCMediaTek Inc.The Linux Foundation
Product-mt6855mt8175mt6873mt8788mt6983mt7902mt8183mt6765mt7663mt6883mt8696mt7921mt8768mt8789mt6769mt6761mt6875mt6889mt8362amt6768mt8786mt8766mt8695mt8167smt8385mt6885mt8518yoctomt6762mt6781mt8365mt6853mt8667mt6895mt6789androidmt8185mt6779mt8512amt6785mt8532mt6879MT6761, MT6762, MT6765, MT6768, MT6769, MT6779, MT6781, MT6785, MT6789, MT6853, MT6855, MT6873, MT6875, MT6879, MT6883, MT6885, MT6889, MT6895, MT6983, MT7663, MT7902, MT7921, MT8167S, MT8175, MT8183, MT8185, MT8362A, MT8365, MT8385, MT8512A, MT8518, MT8532, MT8667, MT8695, MT8696, MT8766, MT8768, MT8786, MT8788, MT8789
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26442
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 18.31%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:59
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420051; Issue ID: GN20220420051.

Action-Not Available
Vendor-MediaTek Inc.
Product-mt7615mt8981_firmwaremt7603mt7622_firmwaremt7628mt7916_firmwaremt7610mt7612mt7628_firmwaremt7916mt7629_firmwaremt7629mt7603_firmwaremt7613mt7612_firmwaremt7915_firmwaremt7610_firmwaremt7986mt7620mt7615_firmwaremt8981mt7613_firmwaremt7622mt7915mt7986_firmwaremt7620_firmwareMT7603, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915, MT7916, MT7986, MT8981
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26443
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 18.31%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:59
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In wifi driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220420068; Issue ID: GN20220420068.

Action-Not Available
Vendor-MediaTek Inc.
Product-mt7615mt8981_firmwaremt7603mt7622_firmwaremt7628mt7916_firmwaremt7610mt7612mt7628_firmwaremt7916mt7629_firmwaremt7629mt7603_firmwaremt7613mt7612_firmwaremt7915_firmwaremt7610_firmwaremt7986mt7620mt7615_firmwaremt8981mt7613_firmwaremt7622mt7915mt7986_firmwaremt7620_firmwareMT7603, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915, MT7916, MT7986, MT8981
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26434
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-01 Aug, 2022 | 13:58
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138450; Issue ID: ALPS07138450.

Action-Not Available
Vendor-yoctoprojectGoogle LLCMediaTek Inc.
Product-mt8175mt6873mt6893mt8675mt8765mt8788mt6983mt8666mt8167mt8768mt8789mt8797mt8321mt8362amt8786mt8766mt8167smt8385mt6833mt6885yoctomt6877mt8365mt6853mt6895mt8168androidmt8185mt8791mt8532mt6879mt8173MT6833, MT6853, MT6873, MT6877, MT6879, MT6885, MT6893, MT6895, MT6983, MT8167, MT8167S, MT8168, MT8173, MT8175, MT8185, MT8321, MT8362A, MT8365, MT8385, MT8532, MT8666, MT8675, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26457
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.04%
||
7 Day CHG~0.00%
Published-06 Sep, 2022 | 17:19
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In vow, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138490; Issue ID: ALPS07138490.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6855mt6893androidmt6833mt6769mt6877mt8797mt6983mt8791mt6785mt6781mt6879MT6769, MT6781, MT6785, MT6833, MT6855, MT6877, MT6879, MT6893, MT6983, MT8791, MT8797
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-26470
Matching Score-4
Assigner-MediaTek, Inc.
ShareView Details
Matching Score-4
Assigner-MediaTek, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 2.92%
||
7 Day CHG~0.00%
Published-06 Sep, 2022 | 17:19
Updated-03 Aug, 2024 | 05:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In aie, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07116037; Issue ID: ALPS07116037.

Action-Not Available
Vendor-Google LLCMediaTek Inc.
Product-mt6895mt8765androidmt8385mt8768mt8789mt8788mt6983mt8321mt8786mt8766mt6879MT6879, MT6895, MT6983, MT8321, MT8385, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789
CWE ID-CWE-787
Out-of-bounds Write
  • Previous
  • 1
  • 2
  • ...
  • 7
  • 8
  • 9
  • ...
  • 13
  • 14
  • Next
Details not found