Vulnerability identifier: #VU61099

Vulnerability risk: High

CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-20047

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
MT5816
Mobile applications / Mobile firmware & hardware
MT5835
Mobile applications / Mobile firmware & hardware
MT9900
Mobile applications / Mobile firmware & hardware
MT9901
Mobile applications / Mobile firmware & hardware
MT9950
Mobile applications / Mobile firmware & hardware
MT9969
Mobile applications / Mobile firmware & hardware
MT9970
Mobile applications / Mobile firmware & hardware
MT9980
Mobile applications / Mobile firmware & hardware
MT6885
Hardware solutions / Firmware
MT6893
Hardware solutions / Firmware

Vendor: MediaTek

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in video decoder. A remote attacker can trick the victim to open a specially crafted media file, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

MT5816: All versions

MT5835: All versions

MT6885: All versions

MT6893: All versions

MT9900: All versions

MT9901: All versions

MT9950: All versions

MT9969: All versions

MT9970: All versions

MT9980: All versions

---

External links
http://corp.mediatek.com/product-security-bulletin/March-2022

---

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.