First published: Mon Jun 20 2022(Updated: )
Realtek USB driver has a buffer overflow vulnerability due to insufficient parameter length verification in the API function. An unauthenticated LAN attacker can exploit this vulnerability to disrupt services.
Credit: twcert@cert.org.tw
Affected Software | Affected Version | How to fix |
---|---|---|
Realtek Rtl8156 Firmware | >=7.42<=7.53 | |
Realtek Rtl8156 Firmware | >=8.49<=8.60 | |
Realtek Rtl8156 Firmware | >=10.28<10.50 | |
Realtek Rtl8156 | ||
Realtek Rtl8156b Firmware | >=7.42<=7.53 | |
Realtek Rtl8156b Firmware | >=8.49<=8.60 | |
Realtek Rtl8156b Firmware | >=10.28<10.50 | |
Realtek Rtl8156b | ||
Realtek Rtl8153 Firmware | >=7.42<=7.53 | |
Realtek Rtl8153 Firmware | >=8.49<=8.60 | |
Realtek Rtl8153 Firmware | >=10.28<10.50 | |
Realtek Rtl8153 | ||
Realtek Rtl8153b Firmware | >=7.42<=7.53 | |
Realtek Rtl8153b Firmware | >=8.49<=8.60 | |
Realtek Rtl8153b Firmware | >=10.28<10.50 | |
Realtek Rtl8153b | ||
Realtek Rtl8154 Firmware | >=7.42<=7.53 | |
Realtek Rtl8154 Firmware | >=8.49<=8.60 | |
Realtek Rtl8154 Firmware | >=10.28<10.50 | |
Realtek Rtl8154 | ||
Realtek Rtl8154b Firmware | >=7.42<=7.53 | |
Realtek Rtl8154b Firmware | >=8.49<=8.60 | |
Realtek Rtl8154b Firmware | >=10.28<10.50 | |
Realtek Rtl8154b | ||
Realtek Rtl8152b Firmware | >=7.42<=7.53 | |
Realtek Rtl8152b Firmware | >=8.49<=8.60 | |
Realtek Rtl8152b Firmware | >=10.28<10.50 | |
Realtek Rtl8152b |
Update version to v10.50
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-21742 is a buffer overflow vulnerability in the Realtek USB driver.
CVE-2022-21742 occurs due to insufficient parameter length verification in the API function of the Realtek USB driver.
An unauthenticated LAN attacker can exploit CVE-2022-21742.
CVE-2022-21742 has a severity level of 6.5, which is medium.
To mitigate CVE-2022-21742, it is recommended to update to the latest firmware version provided by Realtek.