VYPR

vow

by Mediatek

CVEs (8)

  • CVE-2023-20773Jul 4, 2023
    risk 0.00cvss epss 0.00

    In vow, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07611449; Issue ID: ALPS07441735.

  • CVE-2023-20772Jul 4, 2023
    risk 0.00cvss epss 0.00

    In vow, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441796; Issue ID: ALPS07441796.

  • CVE-2022-32645Jan 3, 2023
    risk 0.00cvss epss 0.00

    In vow, there is a possible information disclosure due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07494477; Issue ID: ALPS07494477.

  • CVE-2022-26460Sep 6, 2022
    risk 0.00cvss epss 0.00

    In vow, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032590; Issue ID: ALPS07032590.

  • CVE-2022-26457Sep 6, 2022
    risk 0.00cvss epss 0.00

    In vow, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138490; Issue ID: ALPS07138490.

  • CVE-2022-26459Sep 6, 2022
    risk 0.00cvss epss 0.00

    In vow, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032634; Issue ID: ALPS07032634.

  • CVE-2022-20079Apr 11, 2022
    risk 0.00cvss epss 0.00

    In vow, there is a possible read of uninitialized data due to a improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05837742; Issue ID: ALPS05857289.

  • CVE-2022-20077Apr 11, 2022
    risk 0.00cvss epss 0.00

    In vow, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05837742; Issue ID: ALPS05852812.