CVE-2023-32831

In wlan driver, there is a possible PIN crack due to use of insufficiently random values. This could lead to local information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00325055; Issue ID: MSV-868.

Published: Jan 2, 2024
Updated: Jan 6, 2024
CVE: CVE-2023-32831
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-330

Affected Software
References

Software	From	Fixed in
mediatek / software_development_kit	-	7.6.7.1.x

https://corp.mediatek.com/product-security-bulletin/January-2024

Vulnerability Database

289,784

CVE-2023-32831