Vulnerabilities > Realtek > High

DATE CVE VULNERABILITY TITLE RISK
2022-07-28 CVE-2022-29558 Command Injection vulnerability in Realtek Rtl819X Software Development KIT
Realtek rtl819x-SDK before v3.6.1 allows command injection over the web interface.
network
low complexity
realtek CWE-77
8.8
2021-11-02 CVE-2021-36922 Unspecified vulnerability in Realtek Rtsupx USB Utility Driver 1.14.0.0
RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve unauthorized access to USB devices (Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device.
local
low complexity
realtek
7.8
2021-11-02 CVE-2021-36923 Unspecified vulnerability in Realtek Rtsupx USB Utility Driver 1.14.0.0
RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve unauthorized access to USB device privileged IN and OUT instructions (leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device.
local
low complexity
realtek
7.8
2021-11-02 CVE-2021-36924 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Realtek Rtsupx USB Utility Driver 1.14.0.0
RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve a pool overflow (leading to Escalation of Privileges, Denial of Service, and Code Execution) via a crafted Device IO Control packet to a device.
local
low complexity
realtek CWE-367
7.8
2021-11-02 CVE-2021-36925 Unspecified vulnerability in Realtek Rtsupx USB Utility Driver 1.14.0.0
RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve an arbitrary read or write operation from/to physical memory (leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device.
local
low complexity
realtek
7.8
2021-08-16 CVE-2021-35392 Out-of-bounds Write vulnerability in Realtek Jungle SDK
Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols.
network
low complexity
realtek CWE-787
7.5
2021-06-04 CVE-2020-27301 Out-of-bounds Write vulnerability in Realtek Rtl8195A Firmware and Rtl8710C Firmware
A stack buffer overflow in Realtek RTL8710 (and other Ameba-based devices) can lead to remote code execution via the "AES_UnWRAP" function, when an attacker in Wi-Fi range sends a crafted "Encrypted GTK" value as part of the WPA2 4-way-handshake.
low complexity
realtek CWE-787
8.0
2021-06-04 CVE-2020-27302 Out-of-bounds Write vulnerability in Realtek Rtl8195A Firmware and Rtl8710C Firmware
A stack buffer overflow in Realtek RTL8710 (and other Ameba-based devices) can lead to remote code execution via the "memcpy" function, when an attacker in Wi-Fi range sends a crafted "Encrypted GTK" value as part of the WPA2 4-way-handshake.
low complexity
realtek CWE-787
8.0
2021-04-08 CVE-2020-23539 NULL Pointer Dereference vulnerability in Realtek Rtl8723De Firmware 4.1
An issue was discovered in Realtek rtl8723de BLE Stack <= 4.1 that allows remote attackers to cause a Denial of Service via the interval field to the CONNECT_REQ message.
network
low complexity
realtek CWE-476
7.5
2021-02-03 CVE-2020-25857 Out-of-bounds Write vulnerability in Realtek Rtl8195A Firmware
The function ClientEAPOLKeyRecvd() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an rtl_memcpy() operation, resulting in a stack buffer overflow which can be exploited for denial of service.
network
low complexity
realtek CWE-787
7.5