CVE-2024-20051

LOW EPSS 0.3%
Published Apr 1, 20242y ago · Modified Jun 17, 20262w ago
2.3 CVSS 3.1
Low
Find Similar
Published Apr 1, 2024 2y ago
Last Modified Jun 17, 2026 2w ago

Description

In flashc, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541757; Issue ID: ALPS08541758.

CVSS Details

Base Score
2.3
Exploitability
0.8
Impact
1.4
Vector string
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L
Attack Vector Local
Attack Complexity Low
Privileges Required High
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability Low

Threat Intelligence

EPSS Exploit Probability
0.3% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Affected Products 50

VendorProductVersionRange
linuxfoundationyocto3.3any
rdkcentralrdk-b2022q3any
googleandroid12.0any
googleandroid13.0any
googleandroid14.0any
openwrtopenwrt19.07.0any
openwrtopenwrt21.02.0any
mediatekmt2713*any
mediatekmt2737*any
mediatekmt6781*any
mediatekmt6789*any
mediatekmt6835*any
mediatekmt6855*any
mediatekmt6879*any
mediatekmt6880*any
mediatekmt6886*any
mediatekmt6890*any
mediatekmt6895*any
mediatekmt6980*any
mediatekmt6983*any
mediatekmt6985*any
mediatekmt6989*any
mediatekmt6990*any
mediatekmt8167*any
mediatekmt8168*any
mediatekmt8173*any
mediatekmt8175*any
mediatekmt8188*any
mediatekmt8195*any
mediatekmt8321*any
mediatekmt8362a*any
mediatekmt8365*any
mediatekmt8385*any
mediatekmt8390*any
mediatekmt8395*any
mediatekmt8666*any
mediatekmt8667*any
mediatekmt8673*any
mediatekmt8765*any
mediatekmt8766*any
mediatekmt8768*any
mediatekmt8781*any
mediatekmt8786*any
mediatekmt8788*any
mediatekmt8789*any
mediatekmt8791*any
mediatekmt8791t*any
mediatekmt8796*any
mediatekmt8797*any
mediatekmt8798*any

References 1

  • corp.mediatek.com https://corp.mediatek.com/product-security-bulletin/April-2024
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.