Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
realtek vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5664
Stack-based buffer overflow in Realtek Media Player (aka Realtek Sound Manager, RtlRack, or rtlrack.exe) 1.15.0.0 allows remote malicious users to execute arbitrary code via a crafted playlist (PLA) file.
Realtek Realtek Media Player 1.15.0.0
2 EDB exploits
9.8
CVSSv3
CVE-2022-27255
In Realtek eCos RSDK 1.5.7p1 and MSDK 4.9.4p1, the SIP ALG function that rewrites SDP data has a stack-based buffer overflow. This allows an malicious user to remotely execute code without authentication via a crafted SIP packet that contains malicious SDP data.
Realtek Ecos Rsdk Firmware 1.5.7p1
Realtek Ecos Msdk Firmware 4.9.4p1
2 Github repositories
9.8
CVSSv3
CVE-2021-39306
A stack buffer overflow exists on Realtek RTL8195AM device prior to 2.0.10, it exists in the client code when an attacker sends a big size Authentication challenge text in WEP security.
Realtek Rtl8195am Firmware
6.5
CVSSv3
CVE-2022-26529
Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for segmented packets’ link parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow and disrupt service...
Realtek Bluetooth Mesh Software Development Kit
6.5
CVSSv3
CVE-2022-25635
Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for broadcast network packet length. An unauthenticated attacker in the adjacent network can exploit this vulnerability to disrupt service.
Realtek Bluetooth Mesh Software Development Kit
6.5
CVSSv3
CVE-2022-26527
Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the size of segmented packets’ reference parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow an...
Realtek Bluetooth Mesh Software Development Kit
7.5
CVSSv3
CVE-2020-23539
An issue exists in Realtek rtl8723de BLE Stack <= 4.1 that allows remote malicious users to cause a Denial of Service via the interval field to the CONNECT_REQ message.
Realtek Rtl8723de Firmware
7.5
CVSSv3
CVE-2020-25857
The function ClientEAPOLKeyRecvd() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an rtl_memcpy() operation, resulting in a stack buffer overflow which can be exploited for denial o...
Realtek Rtl8195a Firmware
7.5
CVSSv3
CVE-2020-25853
The function CheckMic() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, _rt_md5_hmac_veneer() or _rt_hmac_sha1_veneer(), resulting in a stack buffer over-read w...
Realtek Rtl8195a Firmware
8.1
CVSSv3
CVE-2020-25854
The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, rt_arc4_crypt_veneer() or _AES_UnWRAP_veneer(), resulting in a stack buffer overfl...
Realtek Rtl8195a Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »