CVE-2014-8361 - Realtek SDK Improper Input Validation Vulnerability
Project:Realtek
Product:SDK
Date Added:2023-09-18Due Date:2023-10-09
Vulnerability Name
Realtek SDK Improper Input Validation Vulnerability
Description
Realtek SDK contains an improper input validation vulnerability in the miniigd SOAP service that allows remote attackers to execute malicious code via a crafted NewInternalClient request.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Additional Notes
https://web.archive.org/web/20150831100501/http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055
https://nvd.nist.gov/vuln/detail/CVE-2014-8361
Related News Articles
Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS AttacksJanuary 8, 2025
Malware exploits 5-year-old zero-day to infect end-of-life IP camerasAugust 29, 2024
Unpatched AVTECH IP Camera Flaw Exploited by Hackers for Botnet AttacksAugust 29, 2024
