4 matches found
CVE-2020-25854
The function DecWPA2KeyData in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an internal function, rtarc4cryptveneer or AESUnWRAPveneer, resulting in a stack buffer overflow which can be exploited for...
CVE-2020-25854
The function DecWPA2KeyData in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an internal function, rtarc4cryptveneer or AESUnWRAPveneer, resulting in a stack buffer overflow which can be exploited for...
Stack overflow
The function DecWPA2KeyData in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an rtlmemcpy operation, resulting in a stack buffer overflow which can be exploited for remote code execution or denial of...
CVE-2020-25854
The CVE-2020-25854 issue affects Realtek RTL8195A Wi‑Fi Module before April 2020 (up to but excluding 2.08). The DecWPA2KeyData() path does not validate the size for internal veneers rt_arc4_crypt_veneer() or _AES_UnWRAP_veneer(), causing a stack buffer overflow that can enable remote code execut...