Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8
CVSSv3

CVE-2020-9395

Published: 06/07/2020 Updated: 21/07/2021
CVSS v2 Base Score: 4.9 | Impact Score: 6.4 | Exploitability Score: 4.4
CVSS v3 Base Score: 8 | Impact Score: 6 | Exploitability Score: 1.3
VMScore: 436
Vector: AV:A/AC:M/Au:S/C:P/I:P/A:P
Subscribe to Realtek

Vulnerability Summary

An issue exists on Realtek RTL8195AM, RTL8711AM, RTL8711AF, and RTL8710AF devices prior to 2.0.6. A stack-based buffer overflow exists in the client code that takes care of WPA2's 4-way-handshake via a malformed EAPOL-Key packet with a long keydata buffer.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

realtek rtl8711af_firmware

realtek rtl8711am_firmware

realtek rtl8195am_firmware

realtek rtl8710af_firmware

References

CWE-787https://github.com/ambiot/amb1_sdk/commit/bc5173d5d4faf6829074b0f1e1b242c12b7777a3#diff-700c216fb376666eaeda0c892e8bdc09https://github.com/ambiot/amb1_arduino/commit/dcea55cf9775a0166805b3db845b237ecd5e74ea#diff-d06e7a87f34cc464a56799a419033014https://www.amebaiot.com/en/security_bulletin/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook