CVE-2022-32659 - Thelinuxfoundation Yocto, Mediatek Mt7916 Firmware and Mediatek Mt7615 Firmware

January 3, 2023

Moderate 6.7

In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220705066; Issue ID: GN20220705066.

Affected software

Thelinuxfoundation Yocto

Mediatek Mt7916 Firmware

Mediatek Mt7615 Firmware

Mediatek Mt8532 Firmware

Mediatek Mt7915 Firmware

Mediatek Mt7613 Firmware

Mediatek Mt7622 Firmware

Mediatek Mt7629 Firmware

Mediatek Mt7981 Firmware

Mediatek Mt7628 Firmware

Mediatek Mt7986 Firmware

Mediatek Mt7603 Firmware

Mediatek Mt8518s Firmware

Reference links

https://corp.mediatek.com/product-security-bulletin/January-2023

CVE-2022-32659 - Thelinuxfoundation Yocto, Mediatek Mt7916 Firmware and Mediatek Mt7615 Firmware

Affected software

Reference links

Get alerted to vulnerabilities in your software