In wlan service, there is a possible command injection due to improper input validation. This could lead to remote code execution with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00244189; Issue ID: WCNCR00244189.
References
Link | Resource |
---|---|
https://corp.mediatek.com/product-security-bulletin/September-2023 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: MediaTek
Published: 2023-09-04T02:27:15.884Z
Updated: 2023-09-04T02:27:15.884Z
Reserved: 2022-10-28T02:03:23.673Z
Link: CVE-2023-20820
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-04T03:15:07.840
Modified: 2023-09-07T19:14:49.727
Link: CVE-2023-20820
JSON object: View
Redhat Information
No data.
CWE