vlad

2 exploits Active since Jul 2024
CVE-2024-40431 NOMISEC HIGH WORKING POC
Realtek <10.0.26100.21374 - Memory Corruption
A lack of input validation in Realtek SD card reader driver before 10.0.26100.21374 through the implementation of the IOCTL_SCSI_PASS_THROUGH control of the SD card reader driver allows an attacker to write to predictable kernel memory locations, even as a low-privileged user.
45 stars
CVSS 8.8
CVE-2022-25479 NOMISEC MEDIUM WORKING POC
Realtek RtsPer/RtsUer Kernel Memory Leak via PCIe/USB Drivers
Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 allows for the leakage of kernel memory from both the stack and the heap.
45 stars
CVSS 5.5