VYPR
Medium severity6.7NVD Advisory· Published May 15, 2023· Updated Jun 17, 2026

CVE-2023-20718

CVE-2023-20718

Description

In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645181; Issue ID: ALPS07645181.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Mediatek/vcullm-fuzzy
  • MediaTek, Inc./MT6768, MT6769, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893, MT8168, MT8175, MT8195, MT8365, MT8395, MT8673, MT8781, MT8786, MT8789, MT8791T, MT8797v5
    Range: Android 11.0, 12.0, 13.0 / Iot-Yocto 22.2 (Yocto 4.0)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.