CVE-2025-44531

HIGH

Realtek RTL8762E SDK v1.4.0 - Denial of Service via Crafted Pairing Random Before Public Key

Title source: llm

Description

An issue in Realtek RTL8762EKF-EVB RTL8762E SDK v1.4.0 allows attackers to cause a Denial of Service (DoS) via sending a crafted before a pairing public key is received during a Bluetooth connection attempt.

References (3)

Core 3

Core References

Product

http://realtek.com

Broken Link

http://rtl8762ekf-evb.com

Exploit, Third Party Advisory

https://github.com/yangting111/BLE_TEST/blob/main/result/PoC/Realtek/Pairing_Random_Before_Pairing_Public_Key.md

View Exploit ZIP pw:eip

Scores

CVSS v3 7.5

EPSS 0.0049

EPSS Percentile 38.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-400

Status published

Products (1)

realtek/rtl8762e_software_development_kit 1.4.0

Published Jun 24, 2025

Tracked Since Feb 18, 2026