CVE-2023-20801

Name of the Vulnerable Software and Affected Versions imgsys (affected versions not specified)

Description The issue is related to a possible use after free due to a race condition in imgsys. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. The vulnerability is also associated with insufficient input validation in the imgsys component of MediaTek microprogrammed software.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.