Use of Obsolete Function in MediaTek products - CVE-2023-20693
Published: July 3, 2023
Vulnerability identifier: #VU77902
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-20693
CWE-ID: CWE-477
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: MediaTek
Affected software:
MT6739
MT6895
MT6983
MT8167
MT8168
MT8195
MT8321
MT8365
MT8385
MT8666
MT8765
MT8781
MT8788
MT6739
MT6895
MT6983
MT8167
MT8168
MT8195
MT8321
MT8365
MT8385
MT8666
MT8765
MT8781
MT8788
Detailed vulnerability description
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an uncaught exception within wlan. A local application can perform service disruption.
How to mitigate CVE-2023-20693
Install security update from vendor's website.