Realtek rtl81xx SDK Wi-Fi Driver Privilege Escalation Vulnerability

A heap-based buffer overflow vulnerability has been identified in the Realtek rtl81xx SDK Wi-Fi driver, specifically within the rtwlanu component. This vulnerability allows local attackers to escalate privileges on affected systems. The issue arises in the N6CSet_DOT11_CIPHER_DEFAULT_KEY function, where user-supplied data is not properly validated before being copied to a fixed-length heap-based buffer. As a result, an attacker with access to execute low-privileged code can exploit this vulnerability to gain elevated privileges and execute arbitrary code with SYSTEM rights.

Impact

Exploitation of this vulnerability leads to local privilege escalation, allowing an attacker to execute arbitrary code in the context of the SYSTEM user.

Remediation

Users can upgrade to version 1030.44.1204.2024 to address this vulnerability.