Описание
In MediaTek LinkIt SDK before 4.6.1, there is a possible memory corruption due to an integer overflow during mishandled memory allocation by pvPortCalloc and pvPortRealloc.
Ссылки
- MitigationThird Party AdvisoryUS Government ResourceVDB Entry
- MitigationThird Party AdvisoryUS Government ResourceVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 4.6.1 (исключая)
cpe:2.3:a:mediatek:linkit_software_development_kit:*:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00335
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-190
Связанные уязвимости
CVSS3: 9.8
github
около 4 лет назад
In MediaTek LinkIt SDK before 4.6.1, there is a possible memory corruption due to an integer overflow during mishandled memory allocation by pvPortCalloc and pvPortRealloc.
EPSS
Процентиль: 56%
0.00335
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-190