CVE-2021-32487
Severity CVSS v4.0:
Pending analysis
Type:
CWE-787
Out-of-bounds Write
Publication date:
09/09/2021
Last modified:
21/09/2021
Description
In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500736; Issue ID: ALPS04938456.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:mediatek:modem:lr12a:*:*:*:*:*:*:* | ||
| cpe:2.3:o:mediatek:modem:lr13:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6762:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6762d:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6762m:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6763:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6765t:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6767:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6769:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6769t:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mediatek:mt6769z:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page