Intrusion PreventionRealtek.SDK.CVE-2021-35395.Buffer.Overflow
Description
This indicates an attempt to exploit a Buffer Overflow Vulnerability in Realtek devices.
The vulnerability is caused by an error when the vulnerable software handles a crafted query parameter. A remote attacker can exploit this vulnerability by sending specially crafted query parameter to the target server. Successful exploitation can lead to Denial-of-Service and likely remote code execution.
Affected Products
Realtek Jungle SDK version v2.x up to v3.4.14B
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.realtek.com/images/safe-report/Realtek_APRouter_SDK_Advisory-CVE-2021-35392_35395.pdf
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2023-03-08 | 23.508 | Sig Added |
| 2023-03-07 | 23.507 | Sig Added |
| 2022-12-08 | 22.454 | Sig Added |
| 2021-09-15 | 18.158 | Default_action:pass:drop |
| 2021-09-07 | 18.152 |
| ID | 50717 |
| Created | Sep 02, 2021 |
| Updated | Mar 07, 2023 |
| Risk |
|
| CVE ID | CVE-2021-35395 |
| Known Exploited | Yes |
| Exploit Prediction Score | 96.81% |
| Default Action | drop |
| Active | |
| Affected OS | Linux, BSD |
| Affected App | Other |