CVE-2020-27301: Buffer Overflow
First published: Fri Jun 04 2021(Updated: )
A stack buffer overflow in Realtek RTL8710 (and other Ameba-based devices) can lead to remote code execution via the "AES_UnWRAP" function, when an attacker in Wi-Fi range sends a crafted "Encrypted GTK" value as part of the WPA2 4-way-handshake.
Credit: vuln@vdoo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Realtek Rtl8710c Firmware | ||
| Realtek Rtl8710c | ||
| Realtek Rtl8195a Firmware | ||
| Realtek RTL8195A |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-27301.
What is the severity of CVE-2020-27301?
CVE-2020-27301 has a severity level of high (8).
Which devices are affected by CVE-2020-27301?
Realtek RTL8710c Firmware and Realtek RTL8195A Firmware are affected by CVE-2020-27301.
What is the impact of CVE-2020-27301?
CVE-2020-27301 can lead to remote code execution on affected devices.
How can CVE-2020-27301 be exploited?
CVE-2020-27301 can be exploited by an attacker in Wi-Fi range sending a crafted "Encrypted GTK" value as part of the WPA2 4-way-handshake.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/realtek
- canonical/realtek rtl8710c firmware
- canonical/realtek rtl8710c
- canonical/realtek rtl8195a firmware
- canonical/realtek rtl8195a