Vulnerabilities > Realtek > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-02 | CVE-2022-25477 | Information Exposure Through Log Files vulnerability in Realtek Rtsper and Rtsuer Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 leaks driver logs that contain addresses of kernel mode objects, weakening KASLR. | 5.5 |
| 2024-07-02 | CVE-2022-25479 | Memory Leak vulnerability in Realtek Rtsper and Rtsuer Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 allows for the leakage of kernel memory from both the stack and the heap. | 5.5 |
| 2022-11-29 | CVE-2022-32966 | Missing Authorization vulnerability in Realtek Rtl8111Fp-Cg Firmware 3.0.0.2019090/5.0.10/5.0.23 RTL8168FP-CG Dash remote management function has missing authorization. | 6.5 |
| 2022-08-30 | CVE-2022-25635 | Classic Buffer Overflow vulnerability in Realtek Bluetooth Mesh Software Development KIT Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for broadcast network packet length. | 6.5 |
| 2022-08-30 | CVE-2022-26527 | Classic Buffer Overflow vulnerability in Realtek Bluetooth Mesh Software Development KIT Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the size of segmented packets’ reference parameter. | 6.5 |
| 2022-08-30 | CVE-2022-26528 | Classic Buffer Overflow vulnerability in Realtek Bluetooth Mesh Software Development KIT Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the length of segmented packets’ shift parameter. | 6.5 |
| 2022-08-30 | CVE-2022-26529 | Classic Buffer Overflow vulnerability in Realtek Bluetooth Mesh Software Development KIT Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for segmented packets’ link parameter. | 6.5 |
| 2022-06-20 | CVE-2022-21742 | Classic Buffer Overflow vulnerability in Realtek products Realtek USB driver has a buffer overflow vulnerability due to insufficient parameter length verification in the API function. | 6.5 |
| 2021-07-07 | CVE-2021-32537 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Realtek HDA Driver Realtek HAD contains a driver crashed vulnerability which allows local side attackers to send a special string to the kernel driver in a user’s mode. | 6.5 |
| 2020-09-30 | CVE-2019-18990 | Authentication Bypass by Spoofing vulnerability in Realtek products A partial authentication bypass vulnerability exists on Realtek RTL8812AR 1.21WW, RTL8196D 1.0.0, RTL8192ER 2.10, and RTL8881AN 1.09 devices. | 5.4 |