{"containers": {"cna": {"affected": [{"product": "MT9011, MT9215, MT9216, MT9220, MT9221, MT9255, MT9256, MT9266, MT9269, MT9285, MT9286, MT9288, MT9600, MT9602, MT9610, MT9611, MT9612, MT9613, MT9615, MT9617, MT9629, MT9630, MT9631, MT9632, MT9636, MT9638, MT9639, MT9650, MT9652, MT9666, MT9669, MT9670, MT9675, MT9685, MT9686, MT9688", "vendor": "MediaTek, Inc.", "versions": [{"status": "affected", "version": "Android 9.0, 10.0, 11.0 or Linux Kernel 4.9, 4.19"}]}], "descriptions": [{"lang": "en", "value": "In MM service, there is a possible out of bounds write due to a heap-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03330460; Issue ID: DTV03330460."}], "problemTypes": [{"descriptions": [{"description": "Elevation of Privilege", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-05-03T20:05:17", "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374", "shortName": "MediaTek"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://corp.mediatek.com/product-security-bulletin/May-2022"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@mediatek.com", "ID": "CVE-2022-20106", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "MT9011, MT9215, MT9216, MT9220, MT9221, MT9255, MT9256, MT9266, MT9269, MT9285, MT9286, MT9288, MT9600, MT9602, MT9610, MT9611, MT9612, MT9613, MT9615, MT9617, MT9629, MT9630, MT9631, MT9632, MT9636, MT9638, MT9639, MT9650, MT9652, MT9666, MT9669, MT9670, MT9675, MT9685, MT9686, MT9688", "version": {"version_data": [{"version_value": "Android 9.0, 10.0, 11.0 or Linux Kernel 4.9, 4.19"}]}}]}, "vendor_name": "MediaTek, Inc."}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In MM service, there is a possible out of bounds write due to a heap-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03330460; Issue ID: DTV03330460."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Elevation of Privilege"}]}]}, "references": {"reference_data": [{"name": "https://corp.mediatek.com/product-security-bulletin/May-2022", "refsource": "MISC", "url": "https://corp.mediatek.com/product-security-bulletin/May-2022"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T02:02:30.506Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://corp.mediatek.com/product-security-bulletin/May-2022"}]}]}, "cveMetadata": {"assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374", "assignerShortName": "MediaTek", "cveId": "CVE-2022-20106", "datePublished": "2022-05-03T20:05:17", "dateReserved": "2021-10-12T00:00:00", "dateUpdated": "2024-08-03T02:02:30.506Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "8DFAAD08-36DA-4C95-8200-C29FE5B6B854", "vulnerable": true}, {"criteria": "cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "D558D965-FA70-4822-A770-419E73BA9ED3", "vulnerable": true}, {"criteria": "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*", "matchCriteriaId": "109DD7FD-3A48-4C3D-8E1A-4433B98E1E64", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:mediatek:mt9011:-:*:*:*:*:*:*:*", "matchCriteriaId": "CEE06B45-7F23-4EB5-9885-4FCA0FC0D5C5", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9215:-:*:*:*:*:*:*:*", "matchCriteriaId": "726E51E6-E765-4973-A0D2-5CC746CACFB9", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9216:-:*:*:*:*:*:*:*", "matchCriteriaId": "4B45803F-1AD2-47C8-BB9B-276628A0D605", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9220:-:*:*:*:*:*:*:*", "matchCriteriaId": "6FB0DB25-6CFF-4688-B423-6CC0252C3B59", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9221:-:*:*:*:*:*:*:*", "matchCriteriaId": "B9E90123-D7DC-4C68-B2F9-27DCEDED2FC6", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9255:-:*:*:*:*:*:*:*", "matchCriteriaId": "D9C5A33A-7B04-4E14-A268-A717CD2420DA", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9256:-:*:*:*:*:*:*:*", "matchCriteriaId": "FAC84405-17EE-4C25-8477-317F2A6A095F", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9266:-:*:*:*:*:*:*:*", "matchCriteriaId": "85C42802-293E-448B-A059-DFDEF1D97EC2", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9269:-:*:*:*:*:*:*:*", "matchCriteriaId": "F19E7E64-721E-436B-B879-D1EDE5EFF84C", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9285:-:*:*:*:*:*:*:*", "matchCriteriaId": "7A7E7D3C-436A-4068-99F1-AFEB34989F69", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9286:-:*:*:*:*:*:*:*", "matchCriteriaId": "4CEEB709-8C7B-48AF-B359-9CE9C68790D5", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9288:-:*:*:*:*:*:*:*", "matchCriteriaId": "6081A92B-4361-462A-9F7F-570AC7256CDB", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9600:-:*:*:*:*:*:*:*", "matchCriteriaId": "1567AAB0-8C08-4A7C-A5D3-4F057C7F6871", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9602:-:*:*:*:*:*:*:*", "matchCriteriaId": "49ED757E-42DD-4176-B216-915EFD8E2F40", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9610:-:*:*:*:*:*:*:*", "matchCriteriaId": "6BA3286D-A136-4EB2-A181-6EF8A556EFDF", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9611:-:*:*:*:*:*:*:*", "matchCriteriaId": "8A9F24C9-2A69-44D9-A16B-E4187230F984", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9612:-:*:*:*:*:*:*:*", "matchCriteriaId": "BD04E099-75F4-48F6-BB8C-28A5D6FB8F60", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9613:-:*:*:*:*:*:*:*", "matchCriteriaId": "E92602E3-1B1B-4683-801D-D151919C63EE", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9615:-:*:*:*:*:*:*:*", "matchCriteriaId": "0AF44498-001B-4A51-AB32-EBC206B14741", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9617:-:*:*:*:*:*:*:*", "matchCriteriaId": "F2E6E130-9F65-482B-AF8B-97DA81FCE19E", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9629:-:*:*:*:*:*:*:*", "matchCriteriaId": "47E5EE7B-1208-4007-AF87-6DC309FFE312", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9630:-:*:*:*:*:*:*:*", "matchCriteriaId": "9FE404F4-FFAE-4646-9234-15230F0577F1", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9631:-:*:*:*:*:*:*:*", "matchCriteriaId": "CA834B63-F689-48BA-84E6-500351990BFD", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9632:-:*:*:*:*:*:*:*", "matchCriteriaId": "EF1B3B37-22C4-42F4-8264-07512619D706", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9636:-:*:*:*:*:*:*:*", "matchCriteriaId": "11B89606-5FD7-4513-984A-16217D37BF4B", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9638:-:*:*:*:*:*:*:*", "matchCriteriaId": "76F4FC23-534B-449A-8344-1F13AE9C8C57", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9639:-:*:*:*:*:*:*:*", "matchCriteriaId": "392C9A58-EAB1-44B5-B189-98C68CC23199", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9650:-:*:*:*:*:*:*:*", "matchCriteriaId": "2D0EF507-52A0-45D1-AC26-97F765E691FC", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9652:-:*:*:*:*:*:*:*", "matchCriteriaId": "C826242C-440E-4D85-841E-570E9C69777C", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9666:-:*:*:*:*:*:*:*", "matchCriteriaId": "1A4E9A32-6267-4AB3-B9A9-BBC79ED2F343", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9669:-:*:*:*:*:*:*:*", "matchCriteriaId": "8531FD76-C0C1-45FE-8FDC-26402FF8BFA5", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9670:-:*:*:*:*:*:*:*", "matchCriteriaId": "FC3E19E5-4DD7-4ECB-A7AE-F501A152078E", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9675:-:*:*:*:*:*:*:*", "matchCriteriaId": "046B7E06-8C40-4D37-8D10-4816E51CA143", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9685:-:*:*:*:*:*:*:*", "matchCriteriaId": "CFD9AD54-9F0F-414B-8936-3A981657D6AB", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9686:-:*:*:*:*:*:*:*", "matchCriteriaId": "4B429106-36BE-42F2-8D05-FB9EF00BDFBA", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9688:-:*:*:*:*:*:*:*", "matchCriteriaId": "F7D78E76-6A3B-4736-B7E7-C9032CDA845B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*", "matchCriteriaId": "27B10B33-5F64-4039-8351-694A7AB6E4E4", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.19:*:*:*:*:*:*:*", "matchCriteriaId": "513F8951-3099-444A-9755-C3A75720EFD2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:mediatek:mt9011:-:*:*:*:*:*:*:*", "matchCriteriaId": "CEE06B45-7F23-4EB5-9885-4FCA0FC0D5C5", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9215:-:*:*:*:*:*:*:*", "matchCriteriaId": "726E51E6-E765-4973-A0D2-5CC746CACFB9", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9216:-:*:*:*:*:*:*:*", "matchCriteriaId": "4B45803F-1AD2-47C8-BB9B-276628A0D605", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9220:-:*:*:*:*:*:*:*", "matchCriteriaId": "6FB0DB25-6CFF-4688-B423-6CC0252C3B59", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9221:-:*:*:*:*:*:*:*", "matchCriteriaId": "B9E90123-D7DC-4C68-B2F9-27DCEDED2FC6", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9255:-:*:*:*:*:*:*:*", "matchCriteriaId": "D9C5A33A-7B04-4E14-A268-A717CD2420DA", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9256:-:*:*:*:*:*:*:*", "matchCriteriaId": "FAC84405-17EE-4C25-8477-317F2A6A095F", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9266:-:*:*:*:*:*:*:*", "matchCriteriaId": "85C42802-293E-448B-A059-DFDEF1D97EC2", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9269:-:*:*:*:*:*:*:*", "matchCriteriaId": "F19E7E64-721E-436B-B879-D1EDE5EFF84C", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9285:-:*:*:*:*:*:*:*", "matchCriteriaId": "7A7E7D3C-436A-4068-99F1-AFEB34989F69", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9286:-:*:*:*:*:*:*:*", "matchCriteriaId": "4CEEB709-8C7B-48AF-B359-9CE9C68790D5", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9288:-:*:*:*:*:*:*:*", "matchCriteriaId": "6081A92B-4361-462A-9F7F-570AC7256CDB", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9600:-:*:*:*:*:*:*:*", "matchCriteriaId": "1567AAB0-8C08-4A7C-A5D3-4F057C7F6871", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9602:-:*:*:*:*:*:*:*", "matchCriteriaId": "49ED757E-42DD-4176-B216-915EFD8E2F40", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9610:-:*:*:*:*:*:*:*", "matchCriteriaId": "6BA3286D-A136-4EB2-A181-6EF8A556EFDF", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9611:-:*:*:*:*:*:*:*", "matchCriteriaId": "8A9F24C9-2A69-44D9-A16B-E4187230F984", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9612:-:*:*:*:*:*:*:*", "matchCriteriaId": "BD04E099-75F4-48F6-BB8C-28A5D6FB8F60", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9613:-:*:*:*:*:*:*:*", "matchCriteriaId": "E92602E3-1B1B-4683-801D-D151919C63EE", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9615:-:*:*:*:*:*:*:*", "matchCriteriaId": "0AF44498-001B-4A51-AB32-EBC206B14741", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9617:-:*:*:*:*:*:*:*", "matchCriteriaId": "F2E6E130-9F65-482B-AF8B-97DA81FCE19E", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9629:-:*:*:*:*:*:*:*", "matchCriteriaId": "47E5EE7B-1208-4007-AF87-6DC309FFE312", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9630:-:*:*:*:*:*:*:*", "matchCriteriaId": "9FE404F4-FFAE-4646-9234-15230F0577F1", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9631:-:*:*:*:*:*:*:*", "matchCriteriaId": "CA834B63-F689-48BA-84E6-500351990BFD", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9632:-:*:*:*:*:*:*:*", "matchCriteriaId": "EF1B3B37-22C4-42F4-8264-07512619D706", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9636:-:*:*:*:*:*:*:*", "matchCriteriaId": "11B89606-5FD7-4513-984A-16217D37BF4B", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9638:-:*:*:*:*:*:*:*", "matchCriteriaId": "76F4FC23-534B-449A-8344-1F13AE9C8C57", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9639:-:*:*:*:*:*:*:*", "matchCriteriaId": "392C9A58-EAB1-44B5-B189-98C68CC23199", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9650:-:*:*:*:*:*:*:*", "matchCriteriaId": "2D0EF507-52A0-45D1-AC26-97F765E691FC", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9652:-:*:*:*:*:*:*:*", "matchCriteriaId": "C826242C-440E-4D85-841E-570E9C69777C", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9666:-:*:*:*:*:*:*:*", "matchCriteriaId": "1A4E9A32-6267-4AB3-B9A9-BBC79ED2F343", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9669:-:*:*:*:*:*:*:*", "matchCriteriaId": "8531FD76-C0C1-45FE-8FDC-26402FF8BFA5", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9670:-:*:*:*:*:*:*:*", "matchCriteriaId": "FC3E19E5-4DD7-4ECB-A7AE-F501A152078E", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9675:-:*:*:*:*:*:*:*", "matchCriteriaId": "046B7E06-8C40-4D37-8D10-4816E51CA143", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9685:-:*:*:*:*:*:*:*", "matchCriteriaId": "CFD9AD54-9F0F-414B-8936-3A981657D6AB", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9686:-:*:*:*:*:*:*:*", "matchCriteriaId": "4B429106-36BE-42F2-8D05-FB9EF00BDFBA", "vulnerable": false}, {"criteria": "cpe:2.3:h:mediatek:mt9688:-:*:*:*:*:*:*:*", "matchCriteriaId": "F7D78E76-6A3B-4736-B7E7-C9032CDA845B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "In MM service, there is a possible out of bounds write due to a heap-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03330460; Issue ID: DTV03330460."}, {"lang": "es", "value": "En MM service, se presenta una posible escritura fuera de l\u00edmites debido a un desbordamiento del b\u00fafer en la regi\u00f3n heap de la memoria. Esto podr\u00eda conllevar a una escalada de privilegios local con privilegios de ejecuci\u00f3n System necesarios. No es requerida una interacci\u00f3n del usuario para su explotaci\u00f3n. ID del parche: DTV03330460; ID de Incidencia: DTV03330460"}], "id": "CVE-2022-20106", "lastModified": "2024-11-21T06:42:10.043", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-05-03T21:15:09.167", "references": [{"source": "security@mediatek.com", "tags": ["Vendor Advisory"], "url": "https://corp.mediatek.com/product-security-bulletin/May-2022"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://corp.mediatek.com/product-security-bulletin/May-2022"}], "sourceIdentifier": "security@mediatek.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}