CVE-2021-32537

Realtek HAD contains a driver crashed vulnerability which allows local side attackers to send a special string to the kernel driver in a user’s mode. Due to unexpected commands, the kernel driver will cause the system crashed.
Configurations

Configuration 1 (hide)

cpe:2.3:a:realtek:hda_driver:*:*:*:*:*:*:*:*

History

20 Sep 2021, 12:29

Type Values Removed Values Added
References (MISC) http://packetstormsecurity.com/files/163498/Realtek-RTKVHD64.sys-Out-Of-Bounds-Access.html - Exploit, Third Party Advisory (MISC) http://packetstormsecurity.com/files/163498/Realtek-RTKVHD64.sys-Out-Of-Bounds-Access.html - Exploit, Third Party Advisory, VDB Entry

16 Jul 2021, 16:15

Type Values Removed Values Added
Summary Realtek HAD contains a driver crashed vulnerability which allows local side attackers to send a special string to the kernel driver in a user’s mode. Due to unexpected commands, the kernel driver will cause the system crashed. A vulnerability in ____COMPONENT____ of Realtek HDA driver allows ____ATTACKER/ATTACK____ to cause ____IMPACT____. This issue affects: Realtek HDA driver 8155 version 9150 and prior versions. Realtek HAD contains a driver crashed vulnerability which allows local side attackers to send a special string to the kernel driver in a user’s mode. Due to unexpected commands, the kernel driver will cause the system crashed.

15 Jul 2021, 14:48

Type Values Removed Values Added
CWE CWE-119
CVSS v2 : unknown
v3 : 6.5
v2 : 4.9
v3 : 6.5
CPE cpe:2.3:a:realtek:hda_driver:*:*:*:*:*:*:*:*
References
  • (MISC) http://packetstormsecurity.com/files/163498/Realtek-RTKVHD64.sys-Out-Of-Bounds-Access.html - Exploit, Third Party Advisory
References (CONFIRM) https://www.twcert.org.tw/tw/cp-132-4813-7b578-1.html - (CONFIRM) https://www.twcert.org.tw/tw/cp-132-4813-7b578-1.html - Third Party Advisory

07 Jul 2021, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-07-07 14:15

Updated : 2024-02-04 21:47


NVD link : CVE-2021-32537

Mitre link : CVE-2021-32537

CVE.ORG link : CVE-2021-32537


JSON object : View

Products Affected

realtek

  • hda_driver
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer