CVE-2023-20821

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Software (affected versions not specified)

Description The issue is related to a possible out of bounds write in nvram due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2023-20821

Affected Products

Mt2713

Android

Mt2735

Mt6833

Mt6835

Mt6853

Mt6855

Mt6873

Mt6875

Mt6877

Mt6879

Mt6880

Mt6883

Mt6885

Mt6886

Mt6889

Mt6890

Mt6891

Mt6893

Mt6895

Mt6980

Mt6983

Mt6985

Mt6990

Mt8167

Mt8168

Mt8173

Mt8175

Mt8185

Mt8188

Mt8195

Mt8321

Mt8362A

Mt8365

Mt8385

Mt8395

Mt8666

Mt8673

Mt8675

Mt8765

Mt8766

Mt8768

Mt8781

Mt8786

Mt8788

Mt8789

Mt8791T

Mt8797

Openwrt

Rdk-B

Yocto

CVE-2023-20821

Weakness Enumeration

Related Identifiers

Affected Products

References · 6