Description

In gnss, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08580200; Issue ID: ALPS08580200.

INFO

Published Date :

2024-04-01T02:35:19.821Z

Last Modified :

2024-08-01T21:52:31.766Z

Source :

MediaTek
AFFECTED PRODUCTS

The following products are affected by CVE-2024-20054 vulnerability.

Vendors Products
Google
  • Android
Linuxfoundation
  • Yocto
Mediatek
  • Mt2735
  • Mt2737
  • Mt6762
  • Mt6765
  • Mt6769
  • Mt6833
  • Mt6835
  • Mt6853
  • Mt6855
  • Mt6873
  • Mt6875
  • Mt6877
  • Mt6879
  • Mt6883
  • Mt6885
  • Mt6889
  • Mt6890
  • Mt6891
  • Mt6893
  • Mt6895
  • Mt6983
  • Mt6985
  • Mt6989
  • Mt6990
  • Mt8168
  • Mt8173
  • Mt8195
  • Mt8321
  • Mt8385
  • Mt8390
  • Mt8666
  • Mt8667
  • Mt8673
  • Mt8676
  • Mt8678
  • Mt8755
  • Mt8765
  • Mt8766
  • Mt8768
  • Mt8775
  • Mt8781
  • Mt8786
  • Mt8788
  • Mt8791t
  • Mt8792
  • Mt8796
  • Mt8893
Openwrt
  • Openwrt
Rdkcentral
  • Rdk-b
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-20054.

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact