← Back

Realtek

realtek

73 CVEs • 69 products

Products (69)

Click to collapse
Toggle
Rtl819x Jungle Software Development Kit
rtl819x_jungle_software_development_kit
23 CVEs
Rtl8195a Firmware
rtl8195a_firmware
7 CVEs
Wi Fi Usb Driver
wi-fi_usb_driver
5 CVEs
Rtl8195am Firmware
rtl8195am_firmware
4 CVEs
Rtsupx Usb Utility Driver
rtsupx_usb_utility_driver
4 CVEs
Bluetooth Mesh Software Development Kit
bluetooth_mesh_software_development_kit
4 CVEs
Rtsper
rtsper
4 CVEs
Rtsuer
rtsuer
4 CVEs
Hd Audio Codec Drivers
hd_audio_codec_drivers
2 CVEs
Rtk 11n Ap Firmware
rtk_11n_ap_firmware
2 CVEs
Rtl8710c Firmware
rtl8710c_firmware
2 CVEs
Rtl8111fp Cg Firmware
rtl8111fp-cg_firmware
2 CVEs
Rtl8762e Software Development Kit
rtl8762e_software_development_kit
2 CVEs
Realtek Media Player
realtek_media_player
1 CVE
Realtek Sdk
realtek_sdk
1 CVE
Audio Driver Firmware
audio_driver_firmware
1 CVE
Ndis
ndis
1 CVE
Adsl Router Soc Firmware
adsl_router_soc_firmware
1 CVE
Rtl8711af Firmware
rtl8711af_firmware
1 CVE
Rtl8711am Firmware
rtl8711am_firmware
1 CVE
Rtl8710af Firmware
rtl8710af_firmware
1 CVE
Rtl8812ar Firmware
rtl8812ar_firmware
1 CVE
Rtl8196d Firmware
rtl8196d_firmware
1 CVE
Rtl8192er Firmware
rtl8192er_firmware
1 CVE
Rtl8881an Firmware
rtl8881an_firmware
1 CVE
Xpon Rtl9601d Software Development Kit
xpon_rtl9601d_software_development_kit
1 CVE
Rtl8723de Firmware
rtl8723de_firmware
1 CVE
Hda Driver
hda_driver
1 CVE
Rtl8156 Firmware
rtl8156_firmware
1 CVE
Rtl8156b Firmware
rtl8156b_firmware
1 CVE
Rtl8153 Firmware
rtl8153_firmware
1 CVE
Rtl8153b Firmware
rtl8153b_firmware
1 CVE
Rtl8154 Firmware
rtl8154_firmware
1 CVE
Rtl8154b Firmware
rtl8154b_firmware
1 CVE
Rtl8152b Firmware
rtl8152b_firmware
1 CVE
Rtl819x Software Development Kit
rtl819x_software_development_kit
1 CVE
Ecos Rsdk Firmware
ecos_rsdk_firmware
1 CVE
Ecos Msdk Firmware
ecos_msdk_firmware
1 CVE
Rtl8111ep Cg Firmware
rtl8111ep-cg_firmware
1 CVE
Usdk
usdk
1 CVE
Xpon Software Development Kit
xpon_software_development_kit
1 CVE
Rtl8812au Firmware
rtl8812au_firmware
1 CVE
Rtk 11n Ap
rtk_11n_ap
0 CVEs
Rtl8711af
rtl8711af
0 CVEs
Rtl8711am
rtl8711am
0 CVEs
Rtl8195am
rtl8195am
0 CVEs
Rtl8710af
rtl8710af
0 CVEs
Rtl8812ar
rtl8812ar
0 CVEs
Rtl8196d
rtl8196d
0 CVEs
Rtl8192er
rtl8192er
0 CVEs
Rtl8881an
rtl8881an
0 CVEs
Rtl8195a
rtl8195a
0 CVEs
Xpon Rtl9601d
xpon_rtl9601d
0 CVEs
Rtl8723de
rtl8723de
0 CVEs
Rtl8710c
rtl8710c
0 CVEs
Rtl8156
rtl8156
0 CVEs
Rtl8156b
rtl8156b
0 CVEs
Rtl8153
rtl8153
0 CVEs
Rtl8153b
rtl8153b
0 CVEs
Rtl8154
rtl8154
0 CVEs
Rtl8154b
rtl8154b
0 CVEs
Rtl8152b
rtl8152b
0 CVEs
Ecos Rsdk
ecos_rsdk
0 CVEs
Ecos Msdk
ecos_msdk
0 CVEs
Rtl8111fp Cg
rtl8111fp-cg
0 CVEs
Rtl8111ep Cg
rtl8111ep-cg
0 CVEs
Rtl8812au
rtl8812au
0 CVEs
Rtl8762ekf Evb
rtl8762ekf-evb
0 CVEs
Rtl8811au
rtl8811au
0 CVEs

CVEs (73)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-25854
1Realtek
1Rtl8195a Firmware
Nov 21, 2024
Feb 3, 2021
N/A· v4
8.1 HIGH· v3
6.8 MEDIUM· v2
The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, rt_arc4_crypt_veneer()...Show more
The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, rt_arc4_crypt_veneer() or _AES_UnWRAP_veneer(), resulting in a stack buffer overflow which can be exploited for remote code execution or denial of service. An attacker can impersonate an Access Point and attack a vulnerable Wi-Fi client, by injecting a crafted packet into the WPA2 handshake. The attacker needs to know the network's PSK in order to exploit this.Show less
CVE-2020-25853
1Realtek
1Rtl8195a Firmware
Nov 21, 2024
Feb 3, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The function CheckMic() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, _rt_md5_hmac_veneer() or _rt...Show more
The function CheckMic() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, _rt_md5_hmac_veneer() or _rt_hmac_sha1_veneer(), resulting in a stack buffer over-read which can be exploited for denial of service. An attacker can impersonate an Access Point and attack a vulnerable Wi-Fi client, by injecting a crafted packet into the WPA2 handshake. The attacker does not need to know the network's PSK.Show less
CVE-2019-18990
1Realtek
4Rtl8192er Firmware
Rtl8196d FirmwareRtl8812ar Firmware+1 more
Nov 21, 2024
Sep 30, 2020
N/A· v4
5.4 MEDIUM· v3
4.8 MEDIUM· v2
A partial authentication bypass vulnerability exists on Realtek RTL8812AR 1.21WW, RTL8196D 1.0.0, RTL8192ER 2.10, and RTL8881AN 1.09 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected...Show more
A partial authentication bypass vulnerability exists on Realtek RTL8812AR 1.21WW, RTL8196D 1.0.0, RTL8192ER 2.10, and RTL8881AN 1.09 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a response is sent back as an encrypted frame, which would allow an attacker to discern information or potentially modify data.Show less
CVE-2020-9395
1Realtek
4Rtl8195am Firmware
Rtl8710af FirmwareRtl8711af Firmware+1 more
Nov 21, 2024
Jul 6, 2020
N/A· v4
8.0 HIGH· v3
4.9 MEDIUM· v2
An issue was discovered on Realtek RTL8195AM, RTL8711AM, RTL8711AF, and RTL8710AF devices before 2.0.6. A stack-based buffer overflow exists in the client code that takes care of WPA2's 4-way-handshake via a malformed EA...Show more
An issue was discovered on Realtek RTL8195AM, RTL8711AM, RTL8711AF, and RTL8710AF devices before 2.0.6. A stack-based buffer overflow exists in the client code that takes care of WPA2's 4-way-handshake via a malformed EAPOL-Key packet with a long keydata buffer.Show less
CVE-2020-12773
1Realtek
1Adsl Router Soc Firmware
Nov 21, 2024
Jun 8, 2020
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
A security misconfiguration vulnerability exists in the SDK of some Realtek ADSL/PON Modem SoC firmware, which allows attackers using a default password to execute arbitrary commands remotely via the build-in network mon...Show more
A security misconfiguration vulnerability exists in the SDK of some Realtek ADSL/PON Modem SoC firmware, which allows attackers using a default password to execute arbitrary commands remotely via the build-in network monitoring tool.Show less
CVE-2019-11867
1Realtek
1Ndis
Nov 21, 2024
Feb 12, 2020
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
Realtek NDIS driver rt640x64.sys, file version 10.1.505.2015, fails to do any size checking on an input buffer from user space, which the driver assumes has a size greater than zero bytes. To exploit this vulnerability,...Show more
Realtek NDIS driver rt640x64.sys, file version 10.1.505.2015, fails to do any size checking on an input buffer from user space, which the driver assumes has a size greater than zero bytes. To exploit this vulnerability, an attacker must send an IRP with a system buffer size of 0.Show less
CVE-2019-19823
11Ciktel
CoshipFg Products+8 more
18A3002ru Firmware
A702r FirmwareEmta Ap Firmwre+15 more
Nov 21, 2024
Jan 27, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords in flash memory and in a file. This affects TOTOLINK A3002RU through 2.0.0, A702...Show more
A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords in flash memory and in a file. This affects TOTOLINK A3002RU through 2.0.0, A702R through 2.1.3, N301RT through 2.1.6, N302R through 3.4.0, N300RT through 3.4.0, N200RE through 4.0.0, N150RT through 3.4.0, and N100RE through 3.4.0; Rutek RTK 11N AP through 2019-12-12; Sapido GR297n through 2019-12-12; CIK TELECOM MESH ROUTER through 2019-12-12; KCTVJEJU Wireless AP through 2019-12-12; Fibergate FGN-R2 through 2019-12-12; Hi-Wifi MAX-C300N through 2019-12-12; HCN MAX-C300N through 2019-12-12; T-broad GN-866ac through 2019-12-12; Coship EMTA AP through 2019-12-12; and IO-Data WN-AC1167R through 2019-12-12.Show less
CVE-2019-19822
11Ciktel
CoshipFg Products+8 more
18A3002ru Firmware
A702r FirmwareEmta Ap Firmwre+15 more
Nov 21, 2024
Jan 27, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) allows remote attackers to retrieve the configuration, including sensitive data (usernames and passwords). This affects TO...Show more
A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) allows remote attackers to retrieve the configuration, including sensitive data (usernames and passwords). This affects TOTOLINK A3002RU through 2.0.0, A702R through 2.1.3, N301RT through 2.1.6, N302R through 3.4.0, N300RT through 3.4.0, N200RE through 4.0.0, N150RT through 3.4.0, and N100RE through 3.4.0; Rutek RTK 11N AP through 2019-12-12; Sapido GR297n through 2019-12-12; CIK TELECOM MESH ROUTER through 2019-12-12; KCTVJEJU Wireless AP through 2019-12-12; Fibergate FGN-R2 through 2019-12-12; Hi-Wifi MAX-C300N through 2019-12-12; HCN MAX-C300N through 2019-12-12; T-broad GN-866ac through 2019-12-12; Coship EMTA AP through 2019-12-12; and IO-Data WN-AC1167R through 2019-12-12.Show less
CVE-2017-3767
1Realtek
1Audio Driver Firmware
May 13, 2026
Nov 13, 2017
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrativ...Show more
A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges.Show less
CVE-2014-8361
3Aterm
DlinkRealtek
26Dir 501 Firmware
Dir 515 FirmwareDir 600l Firmware+23 more
Apr 22, 2026
May 1, 2015
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023.
CVE-2008-5664
1Realtek
1Realtek Media Player
Apr 23, 2026
Dec 19, 2008
N/A· v4
N/A· v3
9.3 HIGH· v2
Stack-based buffer overflow in Realtek Media Player (aka Realtek Sound Manager, RtlRack, or rtlrack.exe) 1.15.0.0 allows remote attackers to execute arbitrary code via a crafted playlist (PLA) file.
CVE-2008-1932
1Realtek
1Hd Audio Codec Drivers
Apr 23, 2026
Apr 25, 2008
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Integer overflow in Realtek HD Audio Codec Drivers RTKVHDA.sys and RTKVHDA64.sys before 6.0.1.5605 on Windows Vista allows local users to execute arbitrary code via a crafted IOCTL request.
CVE-2008-1931
1Realtek
1Hd Audio Codec Drivers
Apr 23, 2026
Apr 25, 2008
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Realtek HD Audio Codec Drivers RTKVHDA.sys and RTKVHDA64.sys before 6.0.1.5605 on Windows Vista allow local users to create, write, and read registry keys via a crafted IOCTL request.