CVE-2026-36355

Published: May 5, 2026Modified: May 7, 2026

7.7

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Exploitability: 2.5 / Impact: 5.2

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

The rtl8192cd Wi-Fi kernel driver in the Realtek rtl819x Jungle SDK (all known versions through v3.4.14B) does not perform any access control checks on the write_mem (ioctl 0x89F5) and read_mem (ioctl 0x89F6) debug handlers, which are compiled into production builds via the unconditionally defined _IOCTL_DEBUG_CMD_ macro in 8192cd_cfg.h

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Exposed IOCTL with Insufficient Access Control

The product implements an IOCTL with functionality that should be restricted, but it does not properly enforce access control for the IOCTL.

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (3)

http://realtek.com

Source: cve@mitre.org

https://github.com/totekuh/CVE-2026-36355

Source: cve@mitre.org

https://github.com/totekuh/CVE-2026-36355

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Timeline

No history available yet.