CVE-2014-8361 - Realtek SDK Improper Input Validation Vulnerability

CVE-2014-8361: Realtek | SDK

Date Added:
2023-09-18

Due Date:
2023-10-09

Vulnerability Name: Realtek SDK Improper Input Validation Vulnerability

Description: Realtek SDK contains an improper input validation vulnerability in the miniigd SOAP service that allows remote attackers to execute malicious code via a crafted NewInternalClient request.

Known To Be Used in Ransomware Campaigns?: Unknown

Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes: https://web.archive.org/web/20150831100501/http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055; https://nvd.nist.gov/vuln/detail/CVE-2014-8361

Related News Articles

Malware exploits 5-year-old zero-day to infect end-of-life IP camerasAugust 29, 2024

Unpatched AVTECH IP Camera Flaw Exploited by Hackers for Botnet AttacksAugust 29, 2024

Free security scan for your website

Don't show website scan report rating on the leaderboard