Critical severity9.8CISA KEVNVD Advisory· Published May 1, 2015· Updated Jun 17, 2026
CVE-2014-8361
CVE-2014-8361
Description
The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
28- cpe:2.3:o:aterm:w300p_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:aterm:w500p_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:aterm:wf300hp2_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:aterm:wf800hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:aterm:wg1200hp2_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:aterm:wg1200hp2_firmware:*:*:*:*:*:*:*:*range: <=2.5.0
- cpe:2.3:o:aterm:wg1200hp3_firmware:*:*:*:*:*:*:*:*range: <=1.3.1
cpe:2.3:o:aterm:wg1200hp_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:aterm:wg1200hp_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:aterm:wg1200hs_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:aterm:wg1800hp3_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:aterm:wg1800hp3_firmware:*:*:*:*:*:*:*:*range: <=1.5.1
- cpe:2.3:o:aterm:wg1800hp4_firmware:*:*:*:*:*:*:*:*range: <=1.3.1
- cpe:2.3:o:aterm:wr8165n_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dlink:dir-615_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:dlink:dir-615_firmware:*:*:*:*:*:*:*:*range: <=6.06b03
- cpe:2.3:o:dlink:dir-615_firmware:10.01b02:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
10- jvn.jp/en/jp/JVN47580234/index.htmlnvdThird Party Advisory
- jvn.jp/en/jp/JVN67456944/index.htmlnvdThird Party Advisory
- packetstormsecurity.com/files/132090/Realtek-SDK-Miniigd-UPnP-SOAP-Command-Execution.htmlnvdThird Party AdvisoryVDB Entry
- securityadvisories.dlink.com/security/publication.aspxnvdVendor Advisory
- www.securityfocus.com/bid/74330nvdBroken LinkThird Party AdvisoryVDB Entry
- www.zerodayinitiative.com/advisories/ZDI-15-155/nvdThird Party AdvisoryVDB Entry
- sensorstechforum.com/hinatabot-cve-2014-8361-ddos/nvdThird Party Advisory
- web.archive.org/web/20150909230440/http://securityadvisories.dlink.com/security/publication.aspxnvdThird Party Advisory
- www.exploit-db.com/exploits/37169/nvdThird Party AdvisoryVDB Entry
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
0No linked articles in our index yet.