The rtl8192cd Wi-Fi kernel driver in the Realtek rtl819x Jungle SDK (all known versions through v3.4.14B) does not perform any access control checks on the writ…

The Realtek rtl8192cd Wi-Fi kernel driver in the rtl819x Jungle SDK contains a critical security vulnerability where debug handlers write_mem and read_mem lack access control checks. These handlers use ioctl commands 0x89F5 and 0x89F6 respectively and are compiled into production builds through an unconditionally defined macro. The vulnerability affects all known versions through v3.4.14B of the SDK. This allows unauthorized memory access operations that could lead to system compromise. The issue stems from the _IOCTL_DEBUG_CMD_ macro being unconditionally defined in the 8192cd_cfg.h configuration file.