N/A

RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve an arbitrary read or write operation from/to physical memory (leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device.

N/A

N/A

Realtek RtsUpx Usb Utility Driver 访问控制错误漏洞

Realtek RtsUpx Usb Utility Driver是中国瑞昱半导体（Realtek）公司的一个 Usb 实用程序驱动器。 Realtek RtsUpx USB Utility Driver for Camera Hub Audio 中存在访问控制错误漏洞，该漏洞源于产品允许通过特殊的IO控制包从物理内存中任意读写。攻击者可通过该漏洞导致权限升级、拒绝服务、代码执行以及信息泄露。以下产品及版本受到影响：Realtek RtsUpx USB Utility Driver for Camera

N/A

N/A