6.5 Medium
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
The Realtek RTL8111FP-CG is an Ethernet controller, and an authorization issue vulnerability exists in versions prior to Realtek RTL8111FP-CG Firmware 5.0.23. The vulnerability stems from a lack of authorization for the Dash remote management feature, which can be exploited by an unauthenticated attacker on an adjacent network to connect to the DASH service port to interrupt the service.
CPE | Name | Operator | Version |
---|---|---|---|
realtek rtl8111fp-cg | lt | 5.0.23 |