CVE-2023-20614

Vulnerability

CVE-2023-20614 is a vulnerability in the RIL (Radio Interface Layer) component of MediaTek chipsets. A missing bounds check leads to a possible out-of-bounds write. The flaw resides in the ril module and affects multiple MediaTek platforms including MT6735, MT6737, MT6739, MT6753, MT6757, MT6761, MT6763, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6885, MT6889, MT6893, MT6895, MT6983, and others [1]. The vulnerability is rated as Medium severity by MediaTek [1].

Exploitation

To exploit the vulnerability, an attacker must have System execution privileges on the device. User interaction is not required for exploitation [1]. The attacker would need to craft a malicious input that bypasses the missing bounds check, causing a write beyond the allocated buffer in the RIL component.

Impact

Successful exploitation could lead to local escalation of privilege (EoP) within the System context [1]. An attacker with System privileges can write out-of-bounds memory, potentially corrupting critical kernel structures or gaining further privileges to execute arbitrary code.

Mitigation

MediaTek released a patch for this vulnerability in the February 2023 Security Bulletin [1]. The patch ID is ALPS07628615. Device OEMs should apply the corresponding security update. Users are advised to install the latest firmware updates from their device manufacturer.