MT6580%2C%20MT6739%2C%20MT6761%2C%20MT6762%2C%20MT6765%2C%20MT6779%2C%20MT6785%2C%20MT6789%2C%20MT6833%2C%20MT6835%2C%20MT6853%2C%20MT6853T%2C%20MT6855%2C%20MT6873%2C%20MT6877%2C%20MT6879%2C%20MT6883%2C%20MT6885%2C%20MT6886%2C%20MT6889%2C%20MT6895%2C%20MT6983%2C%20MT6985%2C%20MT8321%2C%20MT8765%2C%20MT8766%2C%20MT8768%2C%20MT8786%2C%20MT8788%2C%20MT8789%2C%20MT8791%2C%20MT8797%2C%20MT8798

0Vulnerabilities found

CVE-2024-20007

Assigner-MediaTek, Inc.

View Details

Assigner-MediaTek, Inc.

CVSS Score-7.5||HIGH

EPSS-1.61% / 80.99%

7 Day CHG~0.00%

Published-05 Feb, 2024 | 05:59

Updated-15 May, 2025 | 20:15

In mp3 decoder, there is a possible out of bounds write due to a race condition. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08441369; Issue ID: ALPS08441369.

CWE ID-CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE ID-CWE-787

Out-of-bounds Write

N/A

Source -

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -