Rtl819x Jungle Software Development Kit Security Vulnerabilities and Issues — Rtl819x Jungle Software Development Kit CVE List

Lucene search

RealtekRtl819x Jungle Software Development Kit

23 matches found

CVE•added 2021/08/16 12:15 p.m.•1209 views

CVE-2021-35394

Realtek Jungle SDK version v2.x up to v3.4.14B provides a diagnostic tool called 'MP Daemon' that is usually compiled as 'UDPServer' binary. The binary is affected by multiple memory corruption vulnerabilities and an arbitrary command injection vulnerability that can be exploited by remote unauthen...

10CVSS10AI score0.94335EPSS

In wild

CVE•added 2021/08/16 12:15 p.m.•1040 views

CVE-2021-35395

Realtek Jungle SDK version v2.x up to v3.4.14B provides an HTTP web server exposing a management interface that can be used to configure the access point. Two versions of this management interface exists: one based on Go-Ahead named webs and another based on Boa named boa. Both of them are affected...

10CVSS10AI score0.93663EPSS

In wild

CVE•added 2021/08/16 12:15 p.m.•243 views

CVE-2021-35392

Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols. The binary is usually named wscd or mini_upnpd and is the successor to miniigd. The server is vulnerable to a heap buffer overflow that is present due to unsafe crafti...

7.8CVSS8.8AI score0.71785EPSS

In wild

CVE•added 2021/08/16 12:15 p.m.•115 views

CVE-2021-35393

Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols. The binary is usually named wscd or mini_upnpd and is the successor to miniigd. The server is vulnerable to a stack buffer overflow vulnerability that is present due t...

10CVSS10AI score0.71785EPSS

CVE•added 2024/07/08 4:15 p.m.•60 views

CVE-2024-21778

A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted .dat file can lead to arbitrary code execution. An attacker can upload a malicious file to trigger this vulnerability.

7.2CVSS7.4AI score0.00286EPSS

CVE•added 2024/07/08 4:15 p.m.•56 views

CVE-2023-49073

A stack-based buffer overflow vulnerability exists in the boa formFilter functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

7.2CVSS7.3AI score0.00286EPSS

CVE•added 2024/07/08 4:15 p.m.•56 views

CVE-2023-49867

A stack-based buffer overflow vulnerability exists in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability.

7.2CVSS7.4AI score0.04141EPSS

CVE•added 2024/07/08 4:15 p.m.•55 views

CVE-2023-50239

Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger these vulnerabilitie...

7.2CVSS7.6AI score0.0582EPSS

CVE•added 2024/07/08 4:15 p.m.•53 views

CVE-2023-50382

Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command ...

7.2CVSS7.5AI score0.00304EPSS

CVE•added 2024/07/08 4:15 p.m.•49 views

CVE-2023-47856

A stack-based buffer overflow vulnerability exists in the boa set_RadvdPrefixParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability.

7.2CVSS7.4AI score0.04141EPSS

CVE•added 2024/07/08 4:15 p.m.•48 views

CVE-2023-48270

A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

7.2CVSS7.3AI score0.00286EPSS

CVE•added 2024/07/08 4:15 p.m.•47 views

CVE-2023-34435

A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network packets can lead to arbitrary firmware update. An attacker can provide a malicious file to trigger this vulnerability.

7.2CVSS6.9AI score0.00062EPSS

CVE•added 2024/07/08 4:15 p.m.•47 views

CVE-2023-45742

An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

7.2CVSS7.3AI score0.00148EPSS

CVE•added 2024/07/08 4:15 p.m.•47 views

CVE-2023-50330

A stack-based buffer overflow vulnerability exists in the boa getInfo functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability.

7.2CVSS7.4AI score0.04141EPSS

CVE•added 2024/07/08 4:15 p.m.•46 views

CVE-2023-50381

7.2CVSS7.5AI score0.00385EPSS

CVE•added 2024/07/08 4:15 p.m.•45 views

CVE-2023-49595

A stack-based buffer overflow vulnerability exists in the boa rollback_control_code functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

7.2CVSS7.3AI score0.00286EPSS

CVE•added 2024/07/08 4:15 p.m.•43 views

CVE-2023-41251

A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.

7.2CVSS7.5AI score0.03267EPSS

CVE•added 2024/07/08 4:15 p.m.•41 views

CVE-2023-50243

Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This stack-b...

7.2CVSS7.6AI score0.0582EPSS

CVE•added 2024/07/08 4:15 p.m.•39 views

CVE-2023-50244

7.2CVSS7.6AI score0.0582EPSS

CVE•added 2024/07/08 4:15 p.m.•38 views

CVE-2023-50383

7.2CVSS7.5AI score0.00304EPSS

CVE•added 2024/07/08 4:15 p.m.•37 views

CVE-2023-45215

A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.

7.2CVSS7.3AI score0.00155EPSS

CVE•added 2024/07/08 4:15 p.m.•37 views

CVE-2023-50240

7.2CVSS7.6AI score0.0582EPSS

CVE•added 2024/07/08 4:15 p.m.•36 views

CVE-2023-47677

A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network request can lead to CSRF. An attacker can send an HTTP request to trigger this vulnerability.

8.8CVSS8.7AI score0.00264EPSS