CVE-2022-32589 - Vulnerability Details

In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07030600; Issue ID: ALPS07030600.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Google	Android
Linuxfoundation	Yocto
Mediatek	Mt6761 Mt6762 Mt6765 Mt6768 Mt6779 Mt6781 Mt6785 Mt6789 Mt6833 Mt6853 Mt6873 Mt6875 Mt6877 Mt6879 Mt6883 Mt6885 Mt6889 Mt6891 Mt6893 Mt6895 Mt6983 Mt7663 Mt7668 Mt7902 Mt7921 Mt8167s Mt8175 Mt8183 Mt8185 Mt8362a Mt8365 Mt8385 Mt8512a Mt8518 Mt8532 Mt8667 Mt8766 Mt8768 Mt8786 Mt8788 Mt8789

Configuration 1 [-]

AND

OR	cpe:2.3:a:linuxfoundation:yocto:3.1:::::::*
	cpe:2.3:a:linuxfoundation:yocto:3.3:::::::*
	cpe:2.3:o:google:android:11.0:::::::*
	cpe:2.3:o:google:android:12.0:::::::*

OR	cpe:2.3:h:mediatek:mt6761:-:::::::*
	cpe:2.3:h:mediatek:mt6762:-:::::::*
	cpe:2.3:h:mediatek:mt6765:-:::::::*
	cpe:2.3:h:mediatek:mt6768:-:::::::*
	cpe:2.3:h:mediatek:mt6779:-:::::::*
	cpe:2.3:h:mediatek:mt6781:-:::::::*
	cpe:2.3:h:mediatek:mt6785:-:::::::*
	cpe:2.3:h:mediatek:mt6789:-:::::::*
	cpe:2.3:h:mediatek:mt6833:-:::::::*
	cpe:2.3:h:mediatek:mt6853:-:::::::*
	cpe:2.3:h:mediatek:mt6873:-:::::::*
	cpe:2.3:h:mediatek:mt6875:-:::::::*
	cpe:2.3:h:mediatek:mt6877:-:::::::*
	cpe:2.3:h:mediatek:mt6879:-:::::::*
	cpe:2.3:h:mediatek:mt6883:-:::::::*
	cpe:2.3:h:mediatek:mt6885:-:::::::*
	cpe:2.3:h:mediatek:mt6889:-:::::::*
	cpe:2.3:h:mediatek:mt6891:-:::::::*
	cpe:2.3:h:mediatek:mt6893:-:::::::*
	cpe:2.3:h:mediatek:mt6895:-:::::::*
	cpe:2.3:h:mediatek:mt6983:-:::::::*
	cpe:2.3:h:mediatek:mt7663:-:::::::*
	cpe:2.3:h:mediatek:mt7668:-:::::::*
	cpe:2.3:h:mediatek:mt7902:-:::::::*
	cpe:2.3:h:mediatek:mt7921:-:::::::*
	cpe:2.3:h:mediatek:mt8167s:-:::::::*
	cpe:2.3:h:mediatek:mt8175:-:::::::*
	cpe:2.3:h:mediatek:mt8183:-:::::::*
	cpe:2.3:h:mediatek:mt8185:-:::::::*
	cpe:2.3:h:mediatek:mt8362a:-:::::::*
	cpe:2.3:h:mediatek:mt8365:-:::::::*
	cpe:2.3:h:mediatek:mt8385:-:::::::*
	cpe:2.3:h:mediatek:mt8512a:-:::::::*
	cpe:2.3:h:mediatek:mt8518:-:::::::*
	cpe:2.3:h:mediatek:mt8532:-:::::::*
	cpe:2.3:h:mediatek:mt8667:-:::::::*
	cpe:2.3:h:mediatek:mt8766:-:::::::*
	cpe:2.3:h:mediatek:mt8768:-:::::::*
	cpe:2.3:h:mediatek:mt8786:-:::::::*
	cpe:2.3:h:mediatek:mt8788:-:::::::*
	cpe:2.3:h:mediatek:mt8789:-:::::::*

No data.

References

Link	Providers
https://corp.mediatek.com/product-security-bulletin/October-2022

History

No history.

MITRE

Status: PUBLISHED

Assigner: MediaTek

Published: 2022-10-07T00:00:00

Updated: 2024-08-03T07:46:43.617Z

Reserved: 2022-06-09T00:00:00

Link: CVE-2022-32589

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-10-07T20:15:14.687

Modified: 2024-11-21T07:06:41.423

Link: CVE-2022-32589

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object