VYPR
← All advisories
Unrated severityNVD Advisory· Published May 15, 2023· Updated Jan 24, 2025

CVE-2023-20710

CVE-2023-20710

Description

In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07576935; Issue ID: ALPS07576935.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A missing bounds check in MediaTek keyinstall leads to out-of-bounds read, enabling local information disclosure with System privileges.

Vulnerability

In keyinstall on MediaTek chipsets, a missing bounds check leads to an out-of-bounds read vulnerability. The issue affects a range of MediaTek platforms, including MT2731, MT2735, MT2737, MT6580, MT6739, MT6761, MT6762, MT6765, MT6767, MT6768, MT6769, MT6771, MT6779, MT6781, MT6783, MT6785, MT6789, MT6833, MT6853, MT6855, MT6873, MT6877, MT6879, MT6880, and others as listed in the vendor advisory [1]. The vulnerability is assigned CVE-2023-20710 and rated Medium severity with a patch ID of ALPS07576935.

Exploitation

An attacker requires System execution privileges to exploit this vulnerability. No user interaction is needed. The attacker triggers the out-of-bounds read by sending crafted input to the keyinstall service, which fails to validate memory boundaries before reading.

Impact

Successful exploitation leads to local information disclosure, potentially exposing sensitive data stored in kernel memory. The attacker gains access to information beyond their authorized privilege level, with System privileges as the entry point.

Mitigation

MediaTek has released a security patch for this issue and notified device OEMs at least two months before the public disclosure on May 5, 2023 [1]. Users should apply the latest firmware updates from their device manufacturer. No workaround is available; the fix requires a patch to keyinstall.

References
  1. May 2023

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • Mediatek/keyInstallllm-fuzzy
  • MediaTek, Inc./MT6580, MT6731, MT6735, MT6737, MT6739, MT6753, MT6757, MT6757C, MT6757CD, MT6757CH, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6889, MT6891, MT6893, MT6895, MT6983, MT8185, MT8321, MT8385, MT8666, MT8667, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8797v5
    Range: Android 11.0, 12.0, 13.0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.