Vulnerabilities > Realtek
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-30 | CVE-2022-26528 | Classic Buffer Overflow vulnerability in Realtek Bluetooth Mesh Software Development KIT Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the length of segmented packets’ shift parameter. | 6.5 |
| 2022-08-30 | CVE-2022-26529 | Classic Buffer Overflow vulnerability in Realtek Bluetooth Mesh Software Development KIT Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for segmented packets’ link parameter. | 6.5 |
| 2022-08-01 | CVE-2022-27255 | Improper Input Validation vulnerability in Realtek Ecos Msdk Firmware and Ecos Rsdk Firmware In Realtek eCos RSDK 1.5.7p1 and MSDK 4.9.4p1, the SIP ALG function that rewrites SDP data has a stack-based buffer overflow. | 9.8 |
| 2022-07-28 | CVE-2022-29558 | Command Injection vulnerability in Realtek Rtl819X Software Development KIT Realtek rtl819x-SDK before v3.6.1 allows command injection over the web interface. | 8.8 |
| 2022-06-20 | CVE-2022-21742 | Classic Buffer Overflow vulnerability in Realtek products Realtek USB driver has a buffer overflow vulnerability due to insufficient parameter length verification in the API function. | 6.5 |
| 2021-12-22 | CVE-2021-39306 | Out-of-bounds Write vulnerability in Realtek Rtl8195Am Firmware 2.0.10/2.0.6 A stack buffer overflow was discovered on Realtek RTL8195AM device before 2.0.10, it exists in the client code when an attacker sends a big size Authentication challenge text in WEP security. | 9.8 |
| 2021-11-11 | CVE-2021-43573 | Classic Buffer Overflow vulnerability in Realtek Rtl8195Am Firmware 2.0.10/2.0.6 A buffer overflow was discovered on Realtek RTL8195AM devices before 2.0.10. | 9.8 |
| 2021-11-02 | CVE-2021-36922 | Unspecified vulnerability in Realtek Rtsupx USB Utility Driver 1.14.0.0 RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve unauthorized access to USB devices (Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device. | 7.8 |
| 2021-11-02 | CVE-2021-36923 | Unspecified vulnerability in Realtek Rtsupx USB Utility Driver 1.14.0.0 RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve unauthorized access to USB device privileged IN and OUT instructions (leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device. | 7.8 |
| 2021-11-02 | CVE-2021-36924 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Realtek Rtsupx USB Utility Driver 1.14.0.0 RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve a pool overflow (leading to Escalation of Privileges, Denial of Service, and Code Execution) via a crafted Device IO Control packet to a device. | 7.8 |