Vulnerabilities > CVE-2022-32966 - Missing Authorization vulnerability in Realtek Rtl8111Fp-Cg Firmware 3.0.0.2019090/5.0.10/5.0.23

047910
CVSS 6.5 - MEDIUM
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
low complexity
realtek
CWE-862
NVD
Published: 2022-11-29
Updated: 2022-11-30

Summary

RTL8168FP-CG Dash remote management function has missing authorization. An unauthenticated attacker within the adjacent network can connect to DASH service port to disrupt service.

Vulnerable Configurations

Part Description Count
OS
Realtek
4
Hardware
Realtek
1

Common Weakness Enumeration (CWE)

References