CVE-2023-20783: 
NixOS vulnerability analysis and mitigation

CVE-2023-20783 is a medium severity vulnerability discovered in MediaTek's keyinstall component. The vulnerability was disclosed on August 7, 2023, affecting various MediaTek chipsets running Android versions 11.0, 12.0, and 13.0. The issue involves an out-of-bounds write vulnerability due to a missing bounds check in the keyinstall component (Vendor Advisory).

The vulnerability is classified as a medium severity issue with a CVSS v3.1 base score of 6.7. It is categorized as CWE-787 (Out-of-bounds Write) and requires system execution privileges for exploitation. The vulnerability exists in the keyinstall component where improper input validation can lead to an out-of-bounds write condition (NVD).

The vulnerability could lead to local escalation of privilege if successfully exploited. The attack requires system execution privileges, but no user interaction is needed for exploitation. This could potentially allow an attacker with system-level access to elevate their privileges on affected devices (Vendor Advisory).

MediaTek has released security patches to address this vulnerability. Device OEMs have been notified of the issues and corresponding security patches at least two months before the public disclosure. Users are advised to apply the latest security updates provided by their device manufacturers (Vendor Advisory).