In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430.
CVSS
No CVSS.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: MediaTek
Published: 2024-06-03T02:04:48.667Z
Updated: 2024-06-06T02:12:39.404Z
Reserved: 2023-11-02T13:35:35.171Z
Link: CVE-2024-20069
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-06-03T02:15:08.977
Modified: 2024-06-06T03:15:08.747
Link: CVE-2024-20069
JSON object: View
Redhat Information
No data.
CWE