CVE-2023-20692

HIGH

Linuxfoundation Yocto - Improper Exception Handling

Title source: rule

Description

In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664720; Issue ID: ALPS07664720.

References (1)

[Vendor Advisory] https://corp.mediatek.com/product-security-bulletin/July-2023

Scores

CVSS v3 7.5

EPSS 0.0155

EPSS Percentile 81.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-755

Status published

Products (2)

google/android 11.0

linuxfoundation/yocto 4.0

Published Jul 04, 2023

Tracked Since Feb 18, 2026