Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
realtek vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-5664
Stack-based buffer overflow in Realtek Media Player (aka Realtek Sound Manager, RtlRack, or rtlrack.exe) 1.15.0.0 allows remote malicious users to execute arbitrary code via a crafted playlist (PLA) file.
Realtek Realtek Media Player 1.15.0.0
2 EDB exploits
7.5
CVSSv2
CVE-2022-27255
In Realtek eCos RSDK 1.5.7p1 and MSDK 4.9.4p1, the SIP ALG function that rewrites SDP data has a stack-based buffer overflow. This allows an malicious user to remotely execute code without authentication via a crafted SIP packet that contains malicious SDP data.
Realtek Ecos Rsdk Firmware 1.5.7p1
Realtek Ecos Msdk Firmware 4.9.4p1
2 Github repositories
5
CVSSv2
CVE-2020-25853
The function CheckMic() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, _rt_md5_hmac_veneer() or _rt_hmac_sha1_veneer(), resulting in a stack buffer over-read w...
Realtek Rtl8195a Firmware
6.8
CVSSv2
CVE-2020-25854
The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, rt_arc4_crypt_veneer() or _AES_UnWRAP_veneer(), resulting in a stack buffer overfl...
Realtek Rtl8195a Firmware
6.8
CVSSv2
CVE-2020-25855
The function AES_UnWRAP() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for a memcpy() operation, resulting in a stack buffer overflow which can be exploited for remote code execution ...
Realtek Rtl8195a Firmware
6.8
CVSSv2
CVE-2020-25856
The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an rtl_memcpy() operation, resulting in a stack buffer overflow which can be exploited for remote code e...
Realtek Rtl8195a Firmware
5
CVSSv2
CVE-2020-25857
The function ClientEAPOLKeyRecvd() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an rtl_memcpy() operation, resulting in a stack buffer overflow which can be exploited for denial o...
Realtek Rtl8195a Firmware
NA
CVE-2022-25635
Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for broadcast network packet length. An unauthenticated attacker in the adjacent network can exploit this vulnerability to disrupt service.
Realtek Bluetooth Mesh Software Development Kit
NA
CVE-2022-34326
In ambiot amb1_sdk (aka SDK for Ameba1) prior to 2022-06-20 on Realtek RTL8195AM devices prior to 284241d70308ff2519e40afd7b284ba892c730a3, the timer task and RX task would be locked when there are frequent and continuous Wi-Fi connection (with four-way handshake) failures in Sof...
Realtek Rtl8195am Firmware
7.2
CVSSv2
CVE-2017-3767
A local privilege escalation vulnerability was identified in the Realtek audio driver versions before 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges.
Realtek Audio Driver Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »