Primary

Context

Realtek RTL8811AU Heap-Based Buffer Overflow Vulnerability in rtwlanu.sys Allows Local Privilege Escalation

Vulnerability

A heap-based buffer overflow vulnerability has been identified in the Realtek RTL8811AU wireless driver, specifically within the rtwlanu.sys file. This vulnerability allows local attackers to escalate privileges on affected systems. The issue arises in the N6CSet_DOT11_CIPHER_DEFAULT_KEY function, where user-supplied data is not properly validated before being copied to a fixed-length heap-based buffer. As a result, an attacker with access to low-privileged code can exploit this vulnerability to execute arbitrary code with SYSTEM privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to execute code with elevated rights, potentially compromising the entire system.

Remediation

Users are advised to update to version 1030.44.1204.2024, available on the Realtek website.

Added: Sep 2, 2025, 8:31 PM

Updated: Sep 2, 2025, 8:31 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Realtek RTL8811AU Heap-Based Buffer Overflow Vulnerability in rtwlanu.sys Allows Local Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating