top of page
perceptive_background_267k.jpg

The rtl8192cd Wi-Fi kernel driver in the Realtek rtl819x Jungle SDK (all known versions through v3.4.14B) does not perform any access control checks on the writ…

Published:

4 May 2026 at 22:00:00

Alert date:

5 May 2026 at 19:03:17

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure, Mobile & IoT

The Realtek rtl8192cd Wi-Fi kernel driver in the rtl819x Jungle SDK contains a critical security vulnerability where debug handlers write_mem and read_mem lack access control checks. These handlers use ioctl commands 0x89F5 and 0x89F6 respectively and are compiled into production builds through an unconditionally defined macro. The vulnerability affects all known versions through v3.4.14B of the SDK. This allows unauthorized memory access operations that could lead to system compromise. The issue stems from the _IOCTL_DEBUG_CMD_ macro being unconditionally defined in the 8192cd_cfg.h configuration file.

Technical details

Mitigation steps:

Affected products:

Realtek rtl8192cd Wi-Fi driver
Realtek rtl819x Jungle SDK

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-36355
http://realtek.com
https://github.com/totekuh/CVE-2026-36355

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page