CVE-2022-32664

CVSS 8.8 HIGHEPSS 1.2%CWE-77

In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege with User execution privileges needed. User interaction is needed for exploitation. Patch ID: A20220004; Issue ID: OSBNB00140929.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Produtos afetados

MediaTek, Inc. · EN7516, EN7528, EN7529, EN7561, EN7562, EN7580

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://corp.mediatek.com/product-security-bulletin/January-2023