Every CVE whose affected-product data names Mediatek Iot Yocto, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (24)
CVE-2024-20100 — CVSS 9.8 (critical): In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no…
CVE-2025-20721 — CVSS 7.8 (high): In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a…
CVE-2023-32820 — CVSS 7.5 (high): In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with…
CVE-2023-20673 — CVSS 6.7 (medium): In vcu, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution…
CVE-2023-32806 — CVSS 6.7 (medium): In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege…
CVE-2023-32811 — CVSS 6.7 (medium): In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local…
CVE-2023-32828 — CVSS 6.7 (medium): In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System…
CVE-2023-32829 — CVSS 6.7 (medium): In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System…
CVE-2023-20848 — CVSS 6.5 (medium): In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local escalation of…
CVE-2023-20841 — CVSS 6.5 (medium): In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege…
CVE-2023-20842 — CVSS 6.5 (medium): In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of…
CVE-2023-20849 — CVSS 6.5 (medium): In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege…
CVE-2023-20850 — CVSS 6.5 (medium): In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of…
CVE-2023-20840 — CVSS 6.5 (medium): In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of…
CVE-2023-20835 — CVSS 6.4 (medium): In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System…
CVE-2024-20055 — CVSS 6.3 (medium): In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with…
CVE-2023-32807 — CVSS 4.4 (medium): In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure…
CVE-2023-20812 — CVSS 4.4 (medium): In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure…
CVE-2023-20843 — CVSS 4.2 (medium): In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information…
CVE-2023-20845 — CVSS 4.2 (medium): In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure…
CVE-2023-20846 — CVSS 4.2 (medium): In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information…
CVE-2023-20847 — CVSS 4.2 (medium): In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local denial of service…
CVE-2023-20839 — CVSS 4.2 (medium): In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure…
CVE-2023-20844 — CVSS 4.2 (medium): In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information…