Vulnerabilities > CVE-2021-39306 - Out-of-bounds Write vulnerability in Realtek Rtl8195Am Firmware 2.0.10/2.0.6

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
realtek
CWE-787

Summary

A stack buffer overflow was discovered on Realtek RTL8195AM device before 2.0.10, it exists in the client code when an attacker sends a big size Authentication challenge text in WEP security.

Vulnerable Configurations

Part Description Count
OS
Realtek
2
Hardware
Realtek
1

Common Weakness Enumeration (CWE)