CVE-2023-32830

Summary

CVE	CVE-2023-32830
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-10-02 03:15:00 UTC
Updated	2023-10-03 01:01:00 UTC
Description	In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03802522; Issue ID: DTV03802522.

Risk And Classification

Problem Types: CWE-787

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Google	Android	10.0	All	All	All
Operating System	Google	Android	11.0	All	All	All
Hardware	Mediatek	Mt5527	-	All	All	All
Hardware	Mediatek	Mt5583	-	All	All	All
Hardware	Mediatek	Mt5598	-	All	All	All
Hardware	Mediatek	Mt5599	-	All	All	All
Hardware	Mediatek	Mt5670	-	All	All	All
Hardware	Mediatek	Mt5680	-	All	All	All
Hardware	Mediatek	Mt5691	-	All	All	All
Hardware	Mediatek	Mt5695	-	All	All	All
Hardware	Mediatek	Mt5806	-	All	All	All
Hardware	Mediatek	Mt5813	-	All	All	All
Hardware	Mediatek	Mt5815	-	All	All	All
Hardware	Mediatek	Mt5816	-	All	All	All
Hardware	Mediatek	Mt5833	-	All	All	All
Hardware	Mediatek	Mt5835	-	All	All	All
Hardware	Mediatek	Mt5895	-	All	All	All
Hardware	Mediatek	Mt9010	-	All	All	All
Hardware	Mediatek	Mt9011	-	All	All	All
Hardware	Mediatek	Mt9012	-	All	All	All
Hardware	Mediatek	Mt9016	-	All	All	All
Hardware	Mediatek	Mt9020	-	All	All	All
Hardware	Mediatek	Mt9021	-	All	All	All
Hardware	Mediatek	Mt9022	-	All	All	All
Hardware	Mediatek	Mt9215	-	All	All	All
Hardware	Mediatek	Mt9216	-	All	All	All
Hardware	Mediatek	Mt9221	-	All	All	All
Hardware	Mediatek	Mt9222	-	All	All	All
Hardware	Mediatek	Mt9255	-	All	All	All
Hardware	Mediatek	Mt9256	-	All	All	All
Hardware	Mediatek	Mt9266	-	All	All	All
Hardware	Mediatek	Mt9269	-	All	All	All
Hardware	Mediatek	Mt9285	-	All	All	All
Hardware	Mediatek	Mt9286	-	All	All	All
Hardware	Mediatek	Mt9600	-	All	All	All
Hardware	Mediatek	Mt9602	-	All	All	All
Hardware	Mediatek	Mt9610	-	All	All	All
Hardware	Mediatek	Mt9612	-	All	All	All
Hardware	Mediatek	Mt9613	-	All	All	All
Hardware	Mediatek	Mt9615	-	All	All	All
Hardware	Mediatek	Mt9617	-	All	All	All
Hardware	Mediatek	Mt9629	-	All	All	All
Hardware	Mediatek	Mt9630	-	All	All	All
Hardware	Mediatek	Mt9631	-	All	All	All
Hardware	Mediatek	Mt9632	-	All	All	All
Hardware	Mediatek	Mt9633	-	All	All	All
Hardware	Mediatek	Mt9636	-	All	All	All
Hardware	Mediatek	Mt9638	-	All	All	All
Hardware	Mediatek	Mt9639	-	All	All	All
Hardware	Mediatek	Mt9649	-	All	All	All
Hardware	Mediatek	Mt9650	-	All	All	All
Hardware	Mediatek	Mt9652	-	All	All	All
Hardware	Mediatek	Mt9653	-	All	All	All
Hardware	Mediatek	Mt9660	-	All	All	All
Hardware	Mediatek	Mt9666	-	All	All	All
Hardware	Mediatek	Mt9667	-	All	All	All
Hardware	Mediatek	Mt9669	-	All	All	All
Hardware	Mediatek	Mt9670	-	All	All	All
Hardware	Mediatek	Mt9671	-	All	All	All
Hardware	Mediatek	Mt9675	-	All	All	All
Hardware	Mediatek	Mt9679	-	All	All	All
Hardware	Mediatek	Mt9685	-	All	All	All
Hardware	Mediatek	Mt9686	-	All	All	All
Hardware	Mediatek	Mt9688	-	All	All	All
Hardware	Mediatek	Mt9900	-	All	All	All
Hardware	Mediatek	Mt9901	-	All	All	All
Hardware	Mediatek	Mt9931	-	All	All	All
Hardware	Mediatek	Mt9950	-	All	All	All
Hardware	Mediatek	Mt9969	-	All	All	All
Hardware	Mediatek	Mt9970	-	All	All	All
Hardware	Mediatek	Mt9980	-	All	All	All
Hardware	Mediatek	Mt9981	-	All	All	All

References

Reference	Source	Link	Tags
October 2023	MISC	corp.mediatek.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.