Realtek RTL8195A prior 2.08 WPA2 Handshake CheckMic size stack-based overflow

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as critical, was found in Realtek RTL8195A. This affects the function CheckMic of the component WPA2 Handshake Handler. Upgrading to version 2.08 eliminates this vulnerability.

Field02/04/2021 10:16 AM02/23/2021 12:31 PM
vendorRealtekRealtek
nameRTL8195ARTL8195A
componentWPA2 Handshake HandlerWPA2 Handshake Handler
functionCheckMicCheckMic
argumentsizesize
cwe121 (memory corruption)121 (memory corruption)
risk22
cvss3_vuldb_acLL
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
urlhttps://www.vdoo.com/blog/realtek-rtl8195a-vulnerabilities-discovered/https://www.vdoo.com/blog/realtek-rtl8195a-vulnerabilities-discovered/
nameUpgradeUpgrade
upgrade_version2.082.08
cveCVE-2020-25853CVE-2020-25853
date1612393200 (02/04/2021)1612393200 (02/04/2021)
cvss2_vuldb_acLL
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_avAA
cvss2_vuldb_auSS
cvss2_vuldb_eNDND
cvss3_vuldb_avAA
cvss3_vuldb_prLL
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_eXX
cvss2_vuldb_basescore5.25.2
cvss2_vuldb_tempscore5.24.5
cvss3_vuldb_basescore5.55.5
cvss3_vuldb_tempscore5.55.3
cvss3_meta_basescore5.55.5
cvss3_meta_tempscore5.55.3
price_0day$0-$5k$0-$5k
cve_assigned1600812000
cve_nvd_summaryThe function CheckMic() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, _rt_md5_hmac_veneer() or _rt_hmac_sha1_veneer(), resulting in a stack buffer over-read which can be exploited for denial of service. An attacker can impersonate an Access Point and attack a vulnerable Wi-Fi client, by injecting a crafted packet into the WPA2 handshake. The attacker does not need to know the network's PSK.
confirm_urlhttps://www.vdoo.com/blog/realtek-rtl8195a-vulnerabilities-discovered/

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!