Realtek Rtl819X Jungle Software Development Kit vulnerabilities
23 known vulnerabilities affecting realtek/rtl819x_jungle_software_development_kit.
Total CVEs
23
CISA KEV
2
actively exploited
Public exploits
3
Exploited in wild
3
Severity breakdown
CRITICAL3HIGH20
Vulnerabilities
Page 2 of 2
CVE-2023-34435P3HIGHCVSS 7.2v3.4.112024-07-08
CVE-2023-34435 [HIGH] CWE-347 CVE-2023-34435: A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle
A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network packets can lead to arbitrary firmware update. An attacker can provide a malicious file to trigger this vulnerability.
nvd
CVE-2023-47677P3HIGHCVSS 8.8v3.4.112024-07-08
CVE-2023-47677 [HIGH] CWE-352 CVE-2023-47677: A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of
A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network request can lead to CSRF. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2024-21778P3HIGHCVSS 7.2v3.4.112024-07-08
CVE-2024-21778 [HIGH] CWE-122 CVE-2024-21778: A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array fun
A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted .dat file can lead to arbitrary code execution. An attacker can upload a malicious file to trigger this vulnerability.
nvd
← Previous2 / 2