CVE-2023-20840 Information

Description

In imgsys there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326430; Issue ID: ALPS07326430.

Reference

https://corp.mediatek.com/product-security-bulletin/September-2023