CVE-2023-20627

MEDIUM Year: 2023
CVSS v3 Score
6.7
Medium
Weakness Type
CWE-131
View all →

Vulnerability Description

In pqframework, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629585; Issue ID: ALPS07629585.

Related Vulnerabilities

CVE-2020-6070

MEDIUM
CVSS:6.7(Medium)

An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations...

CWE-1312020

CVE-2022-26474

MEDIUM
CVSS:6.7(Medium)

In sensorhub, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User int...

CWE-1312022

CVE-2022-32624

MEDIUM
CVSS:6.7(Medium)

In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User in...

CWE-1312022

CVE-2022-32630

MEDIUM
CVSS:6.7(Medium)

In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User in...

CWE-1312022

CVE-2022-32649

MEDIUM
CVSS:6.7(Medium)

In jpeg, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitat...

CWE-1312022

CVE-2022-32650

MEDIUM
CVSS:6.7(Medium)

In mtk-isp, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploi...

CWE-1312022