VYPR

rtl819x Jungle SDK

by Realtek

CVEs (19)

  • CVE-2023-47856Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.01cvss epss 0.07

    A stack-based buffer overflow vulnerability exists in the boa set_RadvdPrefixParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability.

  • CVE-2023-50240Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.01cvss epss 0.10

    Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This stack-based buffer overflow is related to the `AdvDefaultPreference` request's parameter.

  • CVE-2023-50239Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.01cvss epss 0.07

    Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This stack-based buffer overflow is related to the `interfacename` request's parameter.

  • CVE-2023-50244Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.01cvss epss 0.07

    Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This stack-based buffer overflow is related to the `entry_name` request's parameter.

  • CVE-2023-50243Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.01cvss epss 0.10

    Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This stack-based buffer overflow is related to the `comment` request's parameter.

  • CVE-2023-50330Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.01cvss epss 0.07

    A stack-based buffer overflow vulnerability exists in the boa getInfo functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability.

  • CVE-2023-49867Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.01cvss epss 0.07

    A stack-based buffer overflow vulnerability exists in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability.

  • CVE-2023-47677Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.00

    A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network request can lead to CSRF. An attacker can send an HTTP request to trigger this vulnerability.

  • CVE-2023-34435Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.00

    A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network packets can lead to arbitrary firmware update. An attacker can provide a malicious file to trigger this vulnerability.

  • CVE-2024-21778Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.01

    A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted .dat file can lead to arbitrary code execution. An attacker can upload a malicious file to trigger this vulnerability.

  • CVE-2023-49073Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.01

    A stack-based buffer overflow vulnerability exists in the boa formFilter functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

  • CVE-2023-48270Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.01

    A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

  • CVE-2023-45742Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.00

    An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

  • CVE-2023-49595Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.01

    A stack-based buffer overflow vulnerability exists in the boa rollback_control_code functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

  • CVE-2023-45215Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.00

    A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

  • CVE-2023-41251Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.04

    A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.

  • CVE-2023-50383Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.01

    Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command injection is related to the `localPin` request's parameter.

  • CVE-2023-50382Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.00

    Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command injection is related to the `peerPin` request's parameter.

  • CVE-2023-50381Jul 8, 2024
    Level Platforms
    Wbr 6012
    risk 0.00cvss epss 0.00

    Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command injection is related to the `targetAPSsid` request's parameter.