Modem VoWiFi IKE DH Downgrade Allows Remote Info Disclosure
CVE-2024-20069 Published on June 3, 2024

In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Issue ID: MSV-1430.

NVD

Vulnerability Analysis

CVE-2024-20069 can be exploited with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.

Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
REQUIRED
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
NONE
Availability Impact:
NONE

Weakness Type

What is an Algorithm Downgrade Vulnerability?

A protocol or its implementation supports interaction between multiple actors and allows those actors to negotiate which algorithm should be used as a protection mechanism such as encryption or authentication, but it does not select the strongest algorithm that is available to both parties. When a security mechanism can be forced to downgrade to use a less secure algorithm, this can make it easier for attackers to compromise the software by exploiting weaker algorithm. The victim might not be aware that the less secure algorithm is being used. For example, if an attacker can force a communications channel to use cleartext instead of strongly-encrypted data, then the attacker could read the channel by sniffing, instead of going through extra effort of trying to decrypt the data using brute force techniques.

CVE-2024-20069 has been classified to as an Algorithm Downgrade vulnerability or weakness.


Products Associated with CVE-2024-20069

stack.watch emails you whenever new vulnerabilities are published in Google Android or MediaTek Nr15. Just hit a watch button to start following.

Google Android
 
MediaTek Nr15
 

Affected Versions

MediaTek, Inc. MT6833, MT6853, MT6855, MT6873, MT6875, MT6875T, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893, MT8675, MT8771, MT8791T, MT8797: mediatek mt6833: mediatek mt6853: mediatek mt6855: mediatek mt6873: mediatek mt6875: mediatek mt6875t: mediatek mt6877: mediatek mt6883: mediatek mt6885: mediatek mt6889: mediatek mt6891: mediatek mt6893: mediatek mt8675: mediatek mt8771: mediatek mt8791t: mediatek mt8797:

Exploit Probability

EPSS
1.01%
Percentile
76.94%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.