MediaTek chipsets: wlan service out of bounds write (CVE-2024-20017) #shorts #breaking

CVE

This CVE involves a serious vulnerability in the WLAN service of specific MediaTek chipsets such as MT6890, MT7915, MT7916, MT7981, and MT7986. The flaw stems from improper input validation, leading to a risky condition known as an out of bounds write. This issue can potentially enable attackers to execute code remotely on affected devices without requiring any elevated privileges or user interaction. Although several methods exist to exploit this vulnerability, no specific incidents of exploitations have been recorded. Users relying on MediaTek components in their devices, particularly those using certain SDK and OpenWrt versions, should remain aware of this vulnerability.

Watch the full video on YouTube: CVE-2024-20017

Remediation and exploitation details

This chain involves the following actors

This following systems are involved

Attack entry point

Remediation actions

Exploitation actions

CVE database technical details

CVE ID

CVE-2024-20017

Description

In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation Patch ID: WCNCR00350938; Issue ID: MSV-1132.

Provider

MediaTek

CWE / problem types

Elevation of Privilege

Affected Software Versions

MediaTek, Inc.:MT6890, MT7915, MT7916, MT7981, MT7986:[{'version': 'SDK version 7.4.0.1 and before (for MT7915) / SDK version 7.6.7.0 and before (for MT7916, MT7981 and MT7986) / OpenWrt 19.07, 21.02', 'status': 'affected'}]

Date Published

2024-03-04T02:43:22.997Z

Last Updated

2024-09-25T03:55:42.993Z