CVE-2025-20636
Essential information
- Published
- 03/02/2025 04:15
- Modified
- 18/02/2025 19:15
- Author
- —
- Creator
- —
- CVSS
- 6.7 MEDIUM (v3.1)
- CISA KEV
- No
- CWE
- —
- CVSS vector
-
—
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H—
CVSS metrics
- Access vector
- —
- Access complexity
- —
- Authentication
- —
- Confidentiality impact
- —
- Integrity impact
- —
- Availability impact
- —
- Exploitability
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- LOCAL
- Attack complexity
- LOW
- Privileges required
- HIGH
- User interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality impact
- HIGH
- Integrity impact
- HIGH
- Availability impact
- HIGH
- Exploit code maturity
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- —
- Attack complexity
- —
- Attack requirements
- —
- Privileges required
- —
- User interaction
- —
- Confidentiality (V)
- —
- Confidentiality (S)
- —
- Integrity (V)
- —
- Integrity (S)
- —
- Availability (V)
- —
- Availability (S)
- —
- Exploit maturity
- —
Description
In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09403554; Issue ID: MSV-2431.
NVD status
- Status
- Modified — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| google / android | cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:* |
| google / android | cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* |
| google / android | cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:* |
| google / android | cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:* |
| mediatek / mt6580 | cpe:2.3:h:mediatek:mt6580:-:*:*:*:*:*:*:* |
| mediatek / mt6739 | cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:* |
| mediatek / mt6761 | cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:* |
| mediatek / mt6765 | cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:* |
| mediatek / mt6768 | cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:* |
| mediatek / mt6779 | cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:* |
| mediatek / mt6781 | cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:* |
| mediatek / mt6785 | cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:* |
| mediatek / mt6789 | cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:* |
| mediatek / mt6833 | cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:* |
| mediatek / mt6835 | cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:* |
| mediatek / mt6853 | cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:* |
| mediatek / mt6855 | cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:* |
| mediatek / mt6873 | cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* |
| mediatek / mt6877 | cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:* |
| mediatek / mt6879 | cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:* |
| mediatek / mt6883 | cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:* |
| mediatek / mt6885 | cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* |
| mediatek / mt6886 | cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:* |
| mediatek / mt6889 | cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:* |
| mediatek / mt6893 | cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:* |
| mediatek / mt6895 | cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:* |
| mediatek / mt6983 | cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:* |
| mediatek / mt6985 | cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:* |
| mediatek / mt8321 | cpe:2.3:h:mediatek:mt8321:-:*:*:*:*:*:*:* |
| mediatek / mt8385 | cpe:2.3:h:mediatek:mt8385:-:*:*:*:*:*:*:* |
| mediatek / mt8666 | cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:* |
| mediatek / mt8667 | cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:* |
| mediatek / mt8673 | cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:* |
| mediatek / mt8755 | cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:* |
| mediatek / mt8765 | cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:* |
| mediatek / mt8766 | cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:* |
| mediatek / mt8768 | cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:* |
| mediatek / mt8771 | cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:* |
| mediatek / mt8775 | cpe:2.3:h:mediatek:mt8775:-:*:*:*:*:*:*:* |
| mediatek / mt8781 | cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:* |
| mediatek / mt8786 | cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:* |
| mediatek / mt8788 | cpe:2.3:h:mediatek:mt8788:-:*:*:*:*:*:*:* |
| mediatek / mt8789 | cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:* |
| mediatek / mt8791t | cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:* |
| mediatek / mt8795t | cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:* |
| mediatek / mt8796 | cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:* |
| mediatek / mt8797 | cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:* |
| mediatek / mt8798 | cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:* |