Vulnerabilities > CVE-2020-23539 - NULL Pointer Dereference vulnerability in Realtek Rtl8723De Firmware 4.1

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

realtek

CWE-476

NVD

Published: 2021-04-08

Updated: 2021-04-14

Summary

An issue was discovered in Realtek rtl8723de BLE Stack <= 4.1 that allows remote attackers to cause a Denial of Service via the interval field to the CONNECT_REQ message.

Vulnerable Configurations

Part	Description	Count
OS	Realtek Realtek Rtl8723De Firmware - Realtek Rtl8723De Firmware 4.1	2
Hardware	Realtek Realtek Rtl8723De -	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://github.com/pokerfacett/MY_REQUEST/blob/df73fe140655ea44542b03ac186e6c2b47e97540/Realtek%208723ds%20BLE%20SDK%20denial%20of%20service%20attack.md