CVE-2021-32469

Name of the Vulnerable Software and Affected Versions MediaTek microchips versions 7.4.0.0 Affected Chipsets: MT7603E, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915

Description The issue is related to an out-of-bounds read in the memory of MediaTek microchips, which can be exploited by a remote attacker to cause a denial of service. The vulnerability is associated with the mishandling of the WPS (Wi-Fi Protected Setup) protocol.

Recommendations For version 7.4.0.0, consider disabling the WPS protocol until a patch is available. Restrict access to the WPS protocol to minimize the risk of exploitation. As a temporary workaround, avoid using the WPS protocol in affected devices until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.