Primary

Context

Realtek rtl81xx SDK Wi-Fi Driver Heap-Based Buffer Overflow Vulnerability Leading to Local Privilege Escalation

Vulnerability

A heap-based buffer overflow vulnerability has been identified in the Realtek rtl81xx SDK Wi-Fi driver, specifically within the MgntActSet_TEREDO_SET_RS_PACKET function. This vulnerability allows local attackers to escalate privileges on affected systems. The issue arises from inadequate validation of user-supplied data length before it is copied to a fixed-length heap-based buffer. Exploitation of this vulnerability could enable an attacker to execute arbitrary code with SYSTEM privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to execute arbitrary code in the context of the SYSTEM user.

Remediation

Users can upgrade to version 1030.44.1204.2024 to address this vulnerability.

Added: Sep 2, 2025, 8:39 PM

Updated: Sep 2, 2025, 8:39 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Realtek rtl81xx SDK Wi-Fi Driver Heap-Based Buffer Overflow Vulnerability Leading to Local Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating