CVE-2023-20788

Name of the Vulnerable Software and Affected Versions MediaTek microcode (affected versions not specified)

Description The issue is related to a possible use after free due to a race condition in the thermal component, which could lead to local escalation of privilege. System execution privileges are needed for exploitation, and user interaction is not required. The problem is also associated with synchronization errors when using a shared resource in MediaTek microcode, allowing an attacker to potentially elevate their privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.