WLAN Firmware Remote DoS via Improper Input Handling
CVE-2023-32820 Published on October 2, 2023

In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637.

NVD

Vulnerability Analysis

CVE-2023-32820 is exploitable with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
NONE
Integrity Impact:
NONE
Availability Impact:
HIGH

Weakness Type

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.


Products Associated with CVE-2023-32820

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-32820 are published in these products:

Linux Foundation Yocto
 
MediaTek Iot Yocto
 
Google Android
 
Linux Kernel
 

Affected Versions

MediaTek, Inc. MT5221, MT6781, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT7663, MT7668, MT7902, MT7921, MT8168, MT8365, MT8518S, MT8532, MT8666, MT8673, MT8675, MT8695, MT8766, MT8768, MT8781, MT8786, MT8789, MT8791, MT8797, MT8798: mediatek mt5221: mediatek mt6781: mediatek mt6833: mediatek mt6853: mediatek mt6853t: mediatek mt6855: mediatek mt6873: mediatek mt6875: mediatek mt6877: mediatek mt6879: mediatek mt6883: mediatek mt6885: mediatek mt6886: mediatek mt6889: mediatek mt6891: mediatek mt6893: mediatek mt6895: mediatek mt6983: mediatek mt6985: mediatek mt7663: mediatek mt7668: mediatek mt7902: mediatek mt7921: mediatek mt8168: mediatek mt8365: mediatek mt8518s: mediatek mt8532: mediatek mt8666: mediatek mt8673: mediatek mt8675: mediatek mt8695: mediatek mt8766: mediatek mt8768: mediatek mt8781: mediatek mt8786: mediatek mt8789: mediatek mt8791: mediatek mt8797: mediatek mt8798: google android:

Exploit Probability

EPSS
0.44%
Percentile
62.84%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.