Multiple Flaws Affecting Realtek Wi-Fi SDKs Impact bulk of devices
Taiwanese chip architect Realtek is cautioning of 4 security weaknesses in three(SDKs used for WiFi modules, which are utilized in right around 200 IoT gadgets made by no less than 65 sellers.
The flaws, mainly affecting Realtek SDK v2.x, Realtek “Jungle” SDK v3.0/v3.1/v3.2/v3.4.x/v3.4T/v3.4T-CT, and Realtek “Luna” SDK up to version 1.3.2, could be attacked by adversaries to completely compromise the target gadget and execute arbitrary code with the most elevated level of access.
Below are the Known CVEs:
- CVE-2021-35392 (CVSS score: 8.1) – Heap buffer overflow vulnerability in ‘WiFi Simple Config’ server due to unsafe crafting of SSDP NOTIFY messages
CVE-2021-35393 (CVSS score: 8.1) – Stack buffer overflow vulnerability in ‘WiFi Simple Config’ server due to unsafe parsing of the UPnP SUBSCRIBE/UNSUBSCRIBE Callback header
CVE-2021-35394 (CVSS score: 9.8) – Multiple buffer overflow vulnerabilities and an arbitrary command injection vulnerability in ‘UDPServer’ MP tool
CVE-2021-35395 (CVSS score: 9.8) – Multiple buffer overflow vulnerabilities in HTTP web server ‘boa’ due to unsafe copies of some overly long parameters
Impacted gadgets that has wireless capabilities, include residential gateways, travel routers, WiFi repeaters, IP cameras to smart lightning gateways, or even connected toys from a wide range of manufacturers such as AIgital, ASUSTek, Beeline, Belkin, Buffalo, D-Link, Edimax, Huawei, LG, Logitec, MT-Link, Netis, Netgear, Occtel, PATECH, TCL, Sitecom, TCL, ZTE, Zyxel, and Realtek’s own router lineup.
As per a researcher:
We received more than 190 unique fingerprints for devices which responded over UPnP. If we assume that every device might have sold approx 5 thousands copies, affected devices counts will not be less than a million.
See more : Another security breach surfaced- This time it is Policybazaar
See more: What to prefer for organization security – EDR or XDR
For few devices such as Realtek “Luna” SDK, patches (version 1.3.2a) have been released however the users of the “Jungle” SDK have been suggested to use the earlier version of patches provided by the company.
Follow on Facebook: Latest Hacking Updates