CVE-2021-32537

MEDIUM

Realtek HDA Driver 8155-9150 - Denial of Service via Unexpected Kernel Driver Commands

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-32537. PoCs published by 0vercl0k.

AI-analyzed exploit summary This repository provides a detailed root cause analysis of CVE-2021-32537, an out-of-bounds access vulnerability in the Realtek RTKVHD64.sys driver. It includes technical breakdowns of the affected structures, code paths, and the resulting pool corruption leading to a BSoD.

Description

Realtek HAD contains a driver crashed vulnerability which allows local side attackers to send a special string to the kernel driver in a user’s mode. Due to unexpected commands, the kernel driver will cause the system crashed.

Exploits (1)

nomisec WRITEUP 57 stars
by 0vercl0k · poc
https://github.com/0vercl0k/CVE-2021-32537

This repository provides a detailed root cause analysis of CVE-2021-32537, an out-of-bounds access vulnerability in the Realtek RTKVHD64.sys driver. It includes technical breakdowns of the affected structures, code paths, and the resulting pool corruption leading to a BSoD.

Classification
Writeup 100%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Realtek RTKVHD64.sys driver
No auth needed
Prerequisites: Access to a system with the vulnerable Realtek driver installed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory x_refsource_misc
https://www.twcert.org.tw/tw/cp-132-4813-7b578-1.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/163498/Realtek-RTKVHD64.sys-Out-Of-Bounds-Access.html

Scores

CVSS v3 6.5
EPSS 0.0044
EPSS Percentile 34.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Details

CWE
CWE-119
Status published
Products (1)
realtek/hda_driver 8155 - 9150
Published Jul 07, 2021
Tracked Since Feb 18, 2026