VYPR

Bluetooth

by Mediatek

CVEs (17)

  • CVE-2022-21768HigJul 6, 2022
    risk 0.57cvss 8.8epss 0.00

    In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784351; Issue ID: ALPS06784351.

  • CVE-2022-21767HigJul 6, 2022
    risk 0.57cvss 8.8epss 0.00

    In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784430; Issue ID: ALPS06784430.

  • CVE-2022-20045HigFeb 9, 2022
    risk 0.51cvss 7.8epss 0.00

    In Bluetooth, there is a possible service crash due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126820; Issue ID: ALPS06126820.

  • CVE-2022-20044HigFeb 9, 2022
    risk 0.51cvss 7.8epss 0.00

    In Bluetooth, there is a possible service crash due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126814; Issue ID: ALPS06126814.

  • CVE-2022-20043HigFeb 9, 2022
    risk 0.51cvss 7.8epss 0.00

    In Bluetooth, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06148177; Issue ID:…

  • CVE-2022-20041HigFeb 9, 2022
    risk 0.51cvss 7.8epss 0.00

    In Bluetooth, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06108596; Issue ID:…

  • CVE-2022-20028HigFeb 9, 2022
    risk 0.51cvss 7.8epss 0.00

    In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06198663; Issue ID: ALPS06198663.

  • CVE-2022-20027HigFeb 9, 2022
    risk 0.51cvss 7.8epss 0.00

    In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126826; Issue ID: ALPS06126826.

  • CVE-2022-20026HigFeb 9, 2022
    risk 0.51cvss 7.8epss 0.00

    In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126827; Issue ID: ALPS06126827.

  • CVE-2022-20025HigFeb 9, 2022
    risk 0.51cvss 7.8epss 0.00

    In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126832; Issue ID: ALPS06126832.

  • CVE-2023-20724MedJun 6, 2023
    risk 0.44cvss 6.7epss 0.00

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07843845; Issue ID: ALPS07843841.

  • CVE-2023-20723MedJun 6, 2023
    risk 0.44cvss 6.7epss 0.00

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07843845; Issue ID: ALPS07843845.

  • CVE-2022-20023MedJan 4, 2022
    risk 0.42cvss 6.5epss 0.00

    In Bluetooth, there is a possible application crash due to bluetooth flooding a device with LMP_AU_rand packet. This could lead to remote denial of service of bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:…

  • CVE-2022-20022MedJan 4, 2022
    risk 0.42cvss 6.5epss 0.00

    In Bluetooth, there is a possible link disconnection due to bluetooth does not properly handle a connection attempt from a host with the same BD address as the currently connected BT host. This could lead to remote denial of service of bluetooth with no additional execution…

  • CVE-2022-20021MedJan 4, 2022
    risk 0.42cvss 6.5epss 0.00

    In Bluetooth, there is a possible application crash due to bluetooth does not properly handle the reception of multiple LMP_host_connection_req. This could lead to remote denial of service of bluetooth with no additional execution privileges needed. User interaction is not…

  • CVE-2022-20046MedFeb 9, 2022
    risk 0.36cvss 5.5epss 0.00

    In Bluetooth, there is a possible memory corruption due to a logic error. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06142410; Issue ID: ALPS06142410.

  • CVE-2022-20042MedFeb 9, 2022
    risk 0.36cvss 5.5epss 0.00

    In Bluetooth, there is a possible information disclosure due to incorrect error handling. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06108487; Issue ID:…