{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T14:22:31.082","vulnerabilities":[{"cve":{"id":"CVE-2022-21768","sourceIdentifier":"security@mediatek.com","published":"2022-07-06T14:15:17.337","lastModified":"2024-11-21T06:45:24.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784351; Issue ID: ALPS06784351."},{"lang":"es","value":"En Bluetooth, es posible sea producida una escritura fuera de límites debido a una falta de comprobación de límites. Esto podría conllevar a una escalada local de privilegios sin ser necesarios privilegios de ejecución adicionales. No es requerida una interacción del usuario para su explotación. ID del parche: ALPS06784351; ID de Incidencia: ALPS06784351"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:A/AC:L/Au:N/C:C/I:C/A:C","baseScore":8.3,"accessVector":"ADJACENT_NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":6.5,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*","matchCriteriaId":"B06BE74B-83F4-41A3-8AD3-2E6248F7B0B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*","matchCriteriaId":"8DFAAD08-36DA-4C95-8200-C29FE5B6B854"},{"vulnerable":true,"criteria":"cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*","matchCriteriaId":"D558D965-FA70-4822-A770-419E73BA9ED3"},{"vulnerable":true,"criteria":"cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*","matchCriteriaId":"109DD7FD-3A48-4C3D-8E1A-4433B98E1E64"},{"vulnerable":true,"criteria":"cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*","matchCriteriaId":"F8FB8EE9-FC56-4D5E-AE55-A5967634740C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt8167s:-:*:*:*:*:*:*:*","matchCriteriaId":"639C5BDE-2E83-427A-BAB7-85EA9348AC68"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt8175:-:*:*:*:*:*:*:*","matchCriteriaId":"582F1041-CD84-4763-AD6F-E08DD11F689F"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*","matchCriteriaId":"23F65D7B-31A1-4D94-82E9-254A7A6D7BE1"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt8362a:-:*:*:*:*:*:*:*","matchCriteriaId":"2F16F2B9-D89D-4AB2-B768-CB3B22AEFE11"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*","matchCriteriaId":"97C76F98-5D8D-4E52-ABAF-CD27C1205B0E"},{"vulnerable":false,"criteria":"cpe:2.3:h:mediatek:mt8385:-:*:*:*:*:*:*:*","matchCriteriaId":"299378ED-41CE-4966-99B1-65D2BA1215EF"}]}]}],"references":[{"url":"https://corp.mediatek.com/product-security-bulletin/July-2022","source":"security@mediatek.com","tags":["Vendor Advisory"]},{"url":"https://corp.mediatek.com/product-security-bulletin/July-2022","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}