{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-05T03:11:50.815","vulnerabilities":[{"cve":{"id":"CVE-2022-20038","sourceIdentifier":"security@mediatek.com","published":"2022-02-09T23:15:17.433","lastModified":"2024-11-21T06:42:00.243","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In ccu driver, there is a possible memory corruption due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06183335; Issue ID: ALPS06183335."},{"lang":"es","value":"En ccu driver, se presenta una posible corrupción de memoria debido a una comprobación de límites incorrecta. Esto podría conllevar a una escalada local de privilegios con privilegios de ejecución System requeridos. No es requerida una interacción del usuario para su explotación. ID del Parche: ALPS06183335; ID de Incidencia: ALPS06183335"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:P/A:P","baseScore":4.6,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*","matchCriteriaId":"109DD7FD-3A48-4C3D-8E1A-4433B98E1E64"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*","matchCriteriaId":"9814939B-F05E-4870-90C0-7C0F6BAAEB39"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*","matchCriteriaId":"366F1912-756B-443E-9962-224937DD7DFB"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*","matchCriteriaId":"F6B8A36E-C5FB-44AE-A1C3-50EBF4C68F6B"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*","matchCriteriaId":"7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*","matchCriteriaId":"DD64413C-C774-4C4F-9551-89E1AA9469EE"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*","matchCriteriaId":"213B5C7F-D965-4312-9CDF-4F06FA77D401"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*","matchCriteriaId":"9CD2C3EC-B62D-4616-964F-FDBE5B14A449"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*","matchCriteriaId":"2B469BF4-5961-42E9-814B-1BE06D182E45"}]}]}],"references":[{"url":"https://corp.mediatek.com/product-security-bulletin/February-2022","source":"security@mediatek.com","tags":["Vendor Advisory"]},{"url":"https://corp.mediatek.com/product-security-bulletin/February-2022","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}