Description
In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00467553; Issue ID: MSV-5151.
CVSS breakdown
CVSS 3.1
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- MediaTek, Inc. / MediaTek chipsetMT6890 – MT6890
- MediaTek, Inc. / MediaTek chipsetMT7915 – MT7915
- MediaTek, Inc. / MediaTek chipsetMT7916 – MT7916
- MediaTek, Inc. / MediaTek chipsetMT7981 – MT7981
- MediaTek, Inc. / MediaTek chipsetMT7986 – MT7986