CVE-2024-40431

Published Oct 23, 2024

Last updated 23 days ago

CVSS high 8.8

Overview

Description
A lack of input validation in Realtek SD card reader driver before 10.0.26100.21374 through the implementation of the IOCTL_SCSI_PASS_THROUGH control of the SD card reader driver allows an attacker to write to predictable kernel memory locations, even as a low-privileged user.
Source
cve@mitre.org
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.8
Impact score
5.9
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Social media

Hype score
Not currently trending

  1. ⚠️ Realtek Driver Exploits: A Chain Reaction 💽The combination of vulnerabilities (CVE-2024-40431 & CVE-2022-25479) in the Realtek RtsPer driver presents a significant escalation of privilege risk. Immediate patching or driver removal is recommended for affected systems,

    @IntCyberDigest

    4 Nov 2024

    2567 Impressions

    6 Retweets

    17 Likes

    6 Bookmarks

    1 Reply

    1 Quote

  2. Realtek SD card reader driver flaws impact laptops from Dell, Lenovo, HP, and MSI. Vulnerabilities like CVE-2024-40431 enable kernel memory access, risking system compromise. Affected users should update drivers to version 10.0.26100.21374 or higher. #infosec #cybersecurity ht

    @paramdhagia

    3 Nov 2024

    30 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Realtek SD card reader driver flaws impact laptops from Dell, Lenovo, HP, and MSI. Vulnerabilities like CVE-2024-40431 enable kernel memory access, risking system compromise. Affected users should update drivers to version 10.0.26100.21374 or higher. #infosec #cybersecurity ht

    @paramdhagia

    3 Nov 2024

    23 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Realtek SD card reader driver flaws impact laptops from Dell, Lenovo, HP, and MSI. Vulnerabilities like CVE-2024-40431 enable kernel memory access, risking system compromise. Affected users should update drivers to version 10.0.26100.21374 or higher. #infosec #cybersecurity ht

    @paramdhagia

    3 Nov 2024

    47 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Realtek SD card reader driver flaws impact laptops from Dell, Lenovo, HP, and MSI. Vulnerabilities like CVE-2024-40431 enable kernel memory access, risking system compromise. Affected users should update drivers to version 10.0.26100.21374 or higher. #infosec #cybersecurity ht

    @paramdhagia

    3 Nov 2024

    41 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. Realtek SD card reader driver flaws impact laptops from Dell, Lenovo, HP, and MSI. Vulnerabilities like CVE-2024-40431 enable kernel memory access, risking system compromise. Affected users should update drivers to version 10.0.26100.21374 or higher. #infosec #cybersecurity ht

    @paramdhagia

    3 Nov 2024

    46 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  7. Realtek SD card reader driver flaws impact laptops from Dell, Lenovo, HP, and MSI. Vulnerabilities like CVE-2024-40431 enable kernel memory access, risking system compromise. Affected users should update drivers to version 10.0.26100.21374 or higher. #infosec #cybersecurity h

    @paramdhagia

    3 Nov 2024

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. #exploit 1. CVE-2024-39205: Pyload RCE with js2py sandbox escape https://t.co/vbwpTCCJmy 2. CVE-2024-40431, CVE-2022-25477 - 25480: Vulnerabilities in RtsPer.sys (Realtek SD Card Reader Driver) https://t.co/ea8vmfaCjo

    @HackingTeam777

    31 Oct 2024

    188 Impressions

    0 Retweets

    3 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  9. #exploit 1. CVE-2024-39205: Pyload RCE with js2py sandbox escape https://t.co/91FstISBB5 2. CVE-2024-40431, CVE-2022-25477 - 25480: Vulnerabilities in RtsPer.sys (Realtek SD Card Reader Driver) https://t.co/cNQrOXpH3r

    @ksg93rd

    27 Oct 2024

    50 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. #exploit 1. CVE-2024-39205: Pyload RCE with js2py sandbox escape https://t.co/JCxNSOwPMB 2. CVE-2024-40431, CVE-2022-25477 - 25480: Vulnerabilities in RtsPer.sys (Realtek SD Card Reader Driver) https://t.co/L3TC5IgWT9

    @un_exceptional

    27 Oct 2024

    36 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. #exploit 1. CVE-2024-39205: Pyload RCE with js2py sandbox escape https://t.co/xPx0YWbXQ9 2. CVE-2024-40431, CVE-2022-25477 - 25480: Vulnerabilities in RtsPer.sys (Realtek SD Card Reader Driver) https://t.co/hP9Paw68cX 3. CVE-2024-1512: SQLI in MasterStudy LMS WP Plugin… https:/

    @akaclandestine

    27 Oct 2024

    1669 Impressions

    13 Retweets

    36 Likes

    13 Bookmarks

    0 Replies

    0 Quotes

  12. Yet another successful exploit with @f00fc7c800. Using CVE-2024-40431+CVE-2022-25479 from @zwclose, an NT leak we found on the stack and a trick I learned from @scwuaptx at Hexacon, we managed to get an EOP on Realtek driver 10.0.22000.21350 :) - https://t.co/7vDqqTdZ4O https://t

    @reubensammut

    9611 Impressions

    42 Retweets

    129 Likes

    62 Bookmarks

    3 Replies

    1 Quote

References