In gnss service, there is a possible escalation of privilege due to improper certificate validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08720039; Issue ID: MSV-1424.
The GNSS service improperly validates certificates (improper certificate validation, CWE-295), which allows an attacker to conduct a remote network-based attack. The vulnerability enables bypassing trust mechanisms based on certificates, resulting in obtaining elevated privileges in the system. Exploitation does not require any additional execution privileges or user interaction.
An attacker can remotely obtain privilege escalation on a vulnerable device, potentially gaining full control over it with high impact on confidentiality, integrity, and availability of the system.
Apply patches available from the manufacturer according to references — MediaTek Product Security Bulletin from July 2024 (https://corp.mediatek.com/product-security-bulletin/July-2024). Patch ID: ALPS08720039.
Devices based on Linux Foundation Yocto platforms, RDK-B (Rdkcentral), and Google Android equipped with MediaTek components — specific versions indicated in manufacturer references (MediaTek Product Security Bulletin, July 2024). Patch ID: ALPS08720039; Issue ID: MSV-1424.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HGoogle Android
OSGoogle13.014.0Linuxfoundation Yocto
APPLinuxfoundation2.63.34.0Mediatek Mt2735
HWMediatekwszystkie wersjeMediatek Mt2737
HWMediatekwszystkie wersjeMediatek Mt6761
HWMediatekwszystkie wersjeMediatek Mt6765
HWMediatekwszystkie wersjeMediatek Mt6768
HWMediatekwszystkie wersjeMediatek Mt6781
HWMediatekwszystkie wersjeMediatek Mt6785
HWMediatekwszystkie wersjeMediatek Mt6789
HWMediatekwszystkie wersjeMediatek Mt6833
HWMediatekwszystkie wersjeMediatek Mt6853
HWMediatekwszystkie wersjeMediatek Mt6853t
HWMediatekwszystkie wersjeMediatek Mt6855
HWMediatekwszystkie wersjeMediatek Mt6873
HWMediatekwszystkie wersjeMediatek Mt6875
HWMediatekwszystkie wersjeMediatek Mt6877
HWMediatekwszystkie wersjeMediatek Mt6879
HWMediatekwszystkie wersjeMediatek Mt6880
HWMediatekwszystkie wersjeMediatek Mt6883
HWMediatekwszystkie wersjeMediatek Mt6885
HWMediatekwszystkie wersjeMediatek Mt6886
HWMediatekwszystkie wersjeMediatek Mt6889
HWMediatekwszystkie wersjeMediatek Mt6890
HWMediatekwszystkie wersjeMediatek Mt6891
HWMediatekwszystkie wersjeMediatek Mt6893
HWMediatekwszystkie wersjeMediatek Mt6895
HWMediatekwszystkie wersjeMediatek Mt6980
HWMediatekwszystkie wersjeMediatek Mt6983
HWMediatekwszystkie wersjeMediatek Mt6985
HWMediatekwszystkie wersje
Related vulnerabilities
Heap buffer overflow in UI in Google Chrome on Android prior to 86.0.4240.185 allowed a remote attacker who ha...
Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application cr...
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4...
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4...
Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed ...