CVE-2022-32617

MEDIUM Year: 2022
CVSS v3 Score
6.8
Medium
Weakness Type
CWE-131
View all →

Vulnerability Description

In typec, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07262364; Issue ID: ALPS07262364.

Related Vulnerabilities

CVE-2022-32618

MEDIUM
CVSS:6.8(Medium)

In typec, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege, for an attacker who has physical access to the devic...

CWE-1312022

CVE-2020-6070

MEDIUM
CVSS:6.7(Medium)

An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations...

CWE-1312020

CVE-2022-26474

MEDIUM
CVSS:6.7(Medium)

In sensorhub, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User int...

CWE-1312022

CVE-2022-32624

MEDIUM
CVSS:6.7(Medium)

In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User in...

CWE-1312022

CVE-2022-32630

MEDIUM
CVSS:6.7(Medium)

In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User in...

CWE-1312022

CVE-2022-32649

MEDIUM
CVSS:6.7(Medium)

In jpeg, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitat...

CWE-1312022