CVE-2023-20655 Information

Description

In mmsdk there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07203022; Issue ID: ALPS07203022.

Reference

https://corp.mediatek.com/product-security-bulletin/April-2023