CVE-2024-20040

In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08360153 (for MT6XXX chipsets) / WCNCR00363530 (for MT79XX chipsets); Issue ID: MSV-979.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://corp.mediatek.com/product-security-bulletin/April-2024	Vendor Advisory
https://corp.mediatek.com/product-security-bulletin/April-2024	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:linuxfoundation:yocto:3.3:::::::*
	cpe:2.3:a:linuxfoundation:yocto:4.0:::::::*
	cpe:2.3:a:rdkcentral:rdk-b:2022q3:::::::*
	cpe:2.3:o:google:android:12.0:::::::*
	cpe:2.3:o:google:android:13.0:::::::*
	cpe:2.3:o:google:android:14.0:::::::*
	cpe:2.3:o:linux:linux_kernel:4.19:-::::::
	cpe:2.3:o:openwrt:openwrt:19.07.0:-::::::
	cpe:2.3:o:openwrt:openwrt:21.02.0:-::::::

OR	cpe:2.3:h:mediatek:mt2713:-:::::::*
	cpe:2.3:h:mediatek:mt6580:-:::::::*
	cpe:2.3:h:mediatek:mt6761:-:::::::*
	cpe:2.3:h:mediatek:mt6762:-:::::::*
	cpe:2.3:h:mediatek:mt6768:-:::::::*
	cpe:2.3:h:mediatek:mt6781:-:::::::*
	cpe:2.3:h:mediatek:mt6789:-:::::::*
	cpe:2.3:h:mediatek:mt6833:-:::::::*
	cpe:2.3:h:mediatek:mt6853:-:::::::*
	cpe:2.3:h:mediatek:mt6853t:-:::::::*
	cpe:2.3:h:mediatek:mt6855:-:::::::*
	cpe:2.3:h:mediatek:mt6873:-:::::::*
	cpe:2.3:h:mediatek:mt6875:-:::::::*
	cpe:2.3:h:mediatek:mt6877:-:::::::*
	cpe:2.3:h:mediatek:mt6879:-:::::::*
	cpe:2.3:h:mediatek:mt6883:-:::::::*
	cpe:2.3:h:mediatek:mt6885:-:::::::*
	cpe:2.3:h:mediatek:mt6886:-:::::::*
	cpe:2.3:h:mediatek:mt6889:-:::::::*
	cpe:2.3:h:mediatek:mt6890:-:::::::*
	cpe:2.3:h:mediatek:mt6891:-:::::::*
	cpe:2.3:h:mediatek:mt6893:-:::::::*
	cpe:2.3:h:mediatek:mt6895:-:::::::*
	cpe:2.3:h:mediatek:mt6983:-:::::::*
	cpe:2.3:h:mediatek:mt6985:-:::::::*
	cpe:2.3:h:mediatek:mt6989:-:::::::*
	cpe:2.3:h:mediatek:mt6990:-:::::::*
	cpe:2.3:h:mediatek:mt7902:-:::::::*
	cpe:2.3:h:mediatek:mt7915:-:::::::*
	cpe:2.3:h:mediatek:mt7916:-:::::::*
	cpe:2.3:h:mediatek:mt7920:-:::::::*
	cpe:2.3:h:mediatek:mt7921:-:::::::*
	cpe:2.3:h:mediatek:mt7922:-:::::::*
	cpe:2.3:h:mediatek:mt7925:-:::::::*
	cpe:2.3:h:mediatek:mt7927:-:::::::*
	cpe:2.3:h:mediatek:mt7981:-:::::::*
	cpe:2.3:h:mediatek:mt7986:-:::::::*
	cpe:2.3:h:mediatek:mt8188:-:::::::*
	cpe:2.3:h:mediatek:mt8195:-:::::::*
	cpe:2.3:h:mediatek:mt8370:-:::::::*
	cpe:2.3:h:mediatek:mt8390:-:::::::*
	cpe:2.3:h:mediatek:mt8395:-:::::::*
	cpe:2.3:h:mediatek:mt8518s:-:::::::*
	cpe:2.3:h:mediatek:mt8532:-:::::::*
	cpe:2.3:h:mediatek:mt8673:-:::::::*
	cpe:2.3:h:mediatek:mt8678:-:::::::*
	cpe:2.3:h:mediatek:mt8781:-:::::::*
	cpe:2.3:h:mediatek:mt8791t:-:::::::*
	cpe:2.3:h:mediatek:mt8792:-:::::::*
	cpe:2.3:h:mediatek:mt8796:-:::::::*
	cpe:2.3:h:mediatek:mt8797:-:::::::*
	cpe:2.3:h:mediatek:mt8798:-:::::::*

History

23 Apr 2025, 13:48

Type	Values Removed	Values Added
First Time		Mediatek mt6985 Mediatek mt7986 Mediatek mt7921 Mediatek mt7925 Openwrt openwrt Mediatek mt6879 Mediatek mt7915 Mediatek mt8195 Mediatek mt2713 Google Mediatek mt8395 Mediatek mt8370 Mediatek mt6873 Mediatek mt8532 Mediatek mt6833 Linuxfoundation yocto Mediatek mt6883 Mediatek mt8796 Mediatek mt6781 Mediatek mt6762 Mediatek mt6890 Mediatek mt6886 Mediatek mt8781 Mediatek mt6855 Google android Mediatek mt6789 Mediatek mt6885 Mediatek mt6983 Mediatek mt8188 Mediatek mt6761 Mediatek mt6768 Mediatek Mediatek mt8797 Linux Mediatek mt7927 Mediatek mt8791t Rdkcentral Mediatek mt8798 Mediatek mt8518s Mediatek mt7902 Mediatek mt6853t Mediatek mt8678 Linuxfoundation Mediatek mt7916 Mediatek mt6853 Mediatek mt7920 Mediatek mt8673 Mediatek mt6875 Mediatek mt7981 Mediatek mt6893 Mediatek mt6895 Mediatek mt7922 Mediatek mt6989 Rdkcentral rdk-b Mediatek mt6877 Mediatek mt8390 Mediatek mt6889 Mediatek mt6990 Mediatek mt8792 Mediatek mt6580 Mediatek mt6891 Openwrt Linux linux Kernel
CPE		cpe:2.3:h:mediatek:mt6885:-:::::::* cpe:2.3:a:rdkcentral:rdk-b:2022q3:::::::* cpe:2.3:h:mediatek:mt6883:-:::::::* cpe:2.3:o:google:android:13.0:::::::* cpe:2.3:h:mediatek:mt8188:-:::::::* cpe:2.3:h:mediatek:mt7902:-:::::::* cpe:2.3:h:mediatek:mt2713:-:::::::* cpe:2.3:h:mediatek:mt6853t:-:::::::* cpe:2.3:h:mediatek:mt7921:-:::::::* cpe:2.3:h:mediatek:mt6879:-:::::::* cpe:2.3:h:mediatek:mt8797:-:::::::* cpe:2.3:a:linuxfoundation:yocto:3.3:::::::* cpe:2.3:o:linux:linux_kernel:4.19:-:::::: cpe:2.3:o:openwrt:openwrt:19.07.0:-:::::: cpe:2.3:h:mediatek:mt6580:-:::::::* cpe:2.3:h:mediatek:mt6781:-:::::::* cpe:2.3:h:mediatek:mt6877:-:::::::* cpe:2.3:h:mediatek:mt6889:-:::::::* cpe:2.3:h:mediatek:mt6985:-:::::::* cpe:2.3:h:mediatek:mt7922:-:::::::* cpe:2.3:h:mediatek:mt7981:-:::::::* cpe:2.3:h:mediatek:mt8678:-:::::::* cpe:2.3:h:mediatek:mt8792:-:::::::* cpe:2.3:h:mediatek:mt8796:-:::::::* cpe:2.3:o:openwrt:openwrt:21.02.0:-:::::: cpe:2.3:h:mediatek:mt6853:-:::::::* cpe:2.3:h:mediatek:mt8518s:-:::::::* cpe:2.3:h:mediatek:mt6875:-:::::::* cpe:2.3:h:mediatek:mt8390:-:::::::* cpe:2.3:h:mediatek:mt6886:-:::::::* cpe:2.3:h:mediatek:mt7986:-:::::::* cpe:2.3:h:mediatek:mt7915:-:::::::* cpe:2.3:h:mediatek:mt6762:-:::::::* cpe:2.3:h:mediatek:mt6768:-:::::::* cpe:2.3:h:mediatek:mt8791t:-:::::::* cpe:2.3:h:mediatek:mt6891:-:::::::* cpe:2.3:h:mediatek:mt7916:-:::::::* cpe:2.3:h:mediatek:mt6789:-:::::::* cpe:2.3:h:mediatek:mt6893:-:::::::* cpe:2.3:h:mediatek:mt8532:-:::::::* cpe:2.3:h:mediatek:mt6983:-:::::::* cpe:2.3:a:linuxfoundation:yocto:4.0:::::::* cpe:2.3:h:mediatek:mt6873:-:::::::* cpe:2.3:o:google:android:14.0:::::::* cpe:2.3:h:mediatek:mt8195:-:::::::* cpe:2.3:h:mediatek:mt6890:-:::::::* cpe:2.3:h:mediatek:mt7927:-:::::::* cpe:2.3:h:mediatek:mt7925:-:::::::* cpe:2.3:h:mediatek:mt6761:-:::::::* cpe:2.3:h:mediatek:mt8673:-:::::::* cpe:2.3:h:mediatek:mt6895:-:::::::* cpe:2.3:h:mediatek:mt7920:-:::::::* cpe:2.3:h:mediatek:mt8781:-:::::::* cpe:2.3:h:mediatek:mt6989:-:::::::* cpe:2.3:h:mediatek:mt8798:-:::::::* cpe:2.3:h:mediatek:mt6990:-:::::::* cpe:2.3:h:mediatek:mt8395:-:::::::* cpe:2.3:o:google:android:12.0:::::::* cpe:2.3:h:mediatek:mt6833:-:::::::* cpe:2.3:h:mediatek:mt6855:-:::::::* cpe:2.3:h:mediatek:mt8370:-:::::::*
References	~~() https://corp.mediatek.com/product-security-bulletin/April-2024 -~~	() https://corp.mediatek.com/product-security-bulletin/April-2024 - Vendor Advisory

13 Mar 2025, 19:15

Type	Values Removed	Values Added
CWE		CWE-787
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8

21 Nov 2024, 08:51

Type	Values Removed	Values Added
References	~~() https://corp.mediatek.com/product-security-bulletin/April-2024 -~~	() https://corp.mediatek.com/product-security-bulletin/April-2024 -

01 Apr 2024, 03:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-04-01 03:15

Updated : 2025-04-23 13:48

NVD link : CVE-2024-20040

Mitre link : CVE-2024-20040

CVE.ORG link : CVE-2024-20040

JSON object : View

Products Affected

linuxfoundation

yocto

mediatek

mt8673
mt6855
mt6761
mt6877
mt6873
mt7916
mt8797
mt6768
mt6891
mt6895
mt6781
mt8390
mt6875
mt6762
mt7922
mt7925
mt8532
mt6885
mt8791t
mt6833
mt6889
mt6886
mt6983
mt8188
mt7927
mt8195
mt8781
mt8798
mt6580
mt2713
mt7921
mt8395
mt6879
mt6893
mt7915
mt6853t
mt6890
mt7986
mt8370
mt6853
mt8796
mt7902
mt6789
mt7981
mt6883
mt7920
mt8792
mt6985
mt8518s
mt8678
mt6989
mt6990

openwrt

openwrt

rdkcentral

rdk-b

google

android

linux

linux_kernel

CWE

CWE-787

Out-of-bounds Write

8.8 /10