CVE-2024-20087

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 2, 2024

Updated: Sep 5, 2024

CWE ID 787

Summary

CVE-2024-20087 is a vulnerability found in several MediaTek products, identified as an out-of-bounds write due to inadequate bounds checking, which could allow local escalation of privileges. The affected products include various models such as wsdzGj, wsdzGi, wsdzGh, wsd2ff, wsdzGf, and wsdzGe. Exploitation of this vulnerability does not require user interaction and has a low complexity rating with potential high impacts on integrity and confidentiality. To remediate the issue, a patch designated ALPS08932916 should be applied promptly. The vulnerability poses significant security risks to organizations using these products, with a CVSS base score of 7.8 indicating high severity.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database