CVE-2022-21744
CRITICALMediaTek LR11/LR12/LR12A/LR13/LR9/NR15/NR16 - Out-of-bounds Write in GPRS Packet Neighbour Cell Data Decoding
Title source: llmDescription
In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neighbour Cell Data (PNCD) improper neighbouring cell size with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00810064; Issue ID: ALPS06641626.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://corp.mediatek.com/product-security-bulletin/July-2022
Scores
CVSS v3
9.8
EPSS
0.0505
EPSS Percentile
89.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-787
Status
published
Products (7)
mediatek/lr11
mediatek/lr12
mediatek/lr12a
mediatek/lr13
mediatek/lr9
mediatek/nr15
mediatek/nr16
Published
Jul 06, 2022
Tracked Since
Feb 18, 2026