CVE-2024-20071

In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00364733; Issue ID: MSV-1331.

CVSS v3 4.4 MEDIUM

4.4^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://corp.mediatek.com/product-security-bulletin/June-2024	Vendor Advisory
https://corp.mediatek.com/product-security-bulletin/June-2024	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:mediatek:software_development_kit::::::::
	cpe:2.3:o:openwrt:openwrt:19.07.0:-::::::
	cpe:2.3:o:openwrt:openwrt:21.02.0:-::::::
	cpe:2.3:o:openwrt:openwrt:23.05:::::::*

OR	cpe:2.3:h:mediatek:mt6890:-:::::::*
	cpe:2.3:h:mediatek:mt6990:-:::::::*
	cpe:2.3:h:mediatek:mt7622:-:::::::*

History

25 Apr 2025, 18:38

Type	Values Removed	Values Added
First Time		Mediatek mt6990 Mediatek Mediatek software Development Kit Mediatek mt7622 Mediatek mt6890 Openwrt Openwrt openwrt
References	~~() https://corp.mediatek.com/product-security-bulletin/June-2024 -~~	() https://corp.mediatek.com/product-security-bulletin/June-2024 - Vendor Advisory
CPE		cpe:2.3:a:mediatek:software_development_kit:::::::: cpe:2.3:o:openwrt:openwrt:21.02.0:-:::::: cpe:2.3:h:mediatek:mt6890:-:::::::* cpe:2.3:h:mediatek:mt7622:-:::::::* cpe:2.3:o:openwrt:openwrt:19.07.0:-:::::: cpe:2.3:o:openwrt:openwrt:23.05:::::::* cpe:2.3:h:mediatek:mt6990:-:::::::*

Information

Published : 2024-06-03 02:15

Updated : 2025-04-25 18:38

NVD link : CVE-2024-20071

Mitre link : CVE-2024-20071

CVE.ORG link : CVE-2024-20071

JSON object : View

Products Affected

openwrt

openwrt

mediatek

mt6990
mt7622
software_development_kit
mt6890

CWE

CWE-125

Out-of-bounds Read

{"id": "CVE-2024-20071", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 0.8}]}, "published": "2024-06-03T02:15:09.220", "references": [{"url": "https://corp.mediatek.com/product-security-bulletin/June-2024", "tags": ["Vendor Advisory"], "source": "security@mediatek.com"}, {"url": "https://corp.mediatek.com/product-security-bulletin/June-2024", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security@mediatek.com", "description": [{"lang": "en", "value": "CWE-125"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00364733; Issue ID: MSV-1331."}, {"lang": "es", "value": "En el controlador WLAN, existe una posible lectura fuera de los l\u00edmites debido a una validaci\u00f3n de entrada incorrecta. Esto podr\u00eda conducir a la divulgaci\u00f3n de informaci\u00f3n local con privilegios de ejecuci\u00f3n de System necesarios. La interacci\u00f3n del usuario no es necesaria para la explotaci\u00f3n. ID de parche: WCNCR00364733; ID del problema: MSV-1331."}], "lastModified": "2025-04-25T18:38:10.847", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mediatek:software_development_kit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBCA2F4F-9703-49AD-A6B3-3374AD6E1357", "versionEndIncluding": "5.0.5.0"}, {"criteria": "cpe:2.3:o:openwrt:openwrt:19.07.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4FA469E2-9E63-4C9A-8EBA-10C8C870063A"}, {"criteria": "cpe:2.3:o:openwrt:openwrt:21.02.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0133207-2EED-4625-854F-8DB7770D5BF7"}, {"criteria": "cpe:2.3:o:openwrt:openwrt:23.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AED95D06-8EC6-4070-BE3C-E0F851D7FFC1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "171D1C08-F055-44C0-913C-AA2B73AF5B72"}, {"criteria": "cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1A76806D-A4E3-466A-90CB-E9FFE478E7A0"}, {"criteria": "cpe:2.3:h:mediatek:mt7622:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "55EB4B27-6264-45BE-9A22-BE8418BB0C06"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "security@mediatek.com"}