CVE-2019-11867 — MEDIUM (5.5)

Vulnerability Description

Realtek NDIS driver rt640x64.sys, file version 10.1.505.2015, fails to do any size checking on an input buffer from user space, which the driver assumes has a size greater than zero bytes. To exploit this vulnerability, an attacker must send an IRP with a system buffer size of 0.

CVSS Score

5.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Realtek	Ndis	10.1.505.2015

Related Weaknesses (CWE)

CWE-476

References

https://downwithup.github.io/CVEPosts.htmlThird Party Advisory
https://www.realtek.cz/realtek-network-drivers.htmlVendor Advisory
https://downwithup.github.io/CVEPosts.htmlThird Party Advisory
https://www.realtek.cz/realtek-network-drivers.htmlVendor Advisory

FAQ

What is CVE-2019-11867?

CVE-2019-11867 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Realtek NDIS driver rt640x64.sys, file version 10.1.505.2015, fails to do any size checking on an input buffer from user space, which the driver assumes has a size greater than zero bytes. To exploit ...

How severe is CVE-2019-11867?

CVE-2019-11867 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-11867?

Check the references section above for vendor advisories and patch information. Affected products include: Realtek Ndis.