QwikSec

Security Database

CVE

CWE

Training

CVE-2022-25477

Published: Jul 2, 2024

Modified: Oct 29, 2024

PUBLISHED

Description

Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 leaks driver logs that contain addresses of kernel mode objects, weakening KASLR.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://realtek.com

https://www.realtek.com/images/safe-report/Realtek_RtsPer_RtsUer_Security_Advisory_Report.pdf

https://gist.github.com/zwclose/feb16f1424779a61cb1d9f6d5681408a

https://zwclose.github.io/2024/10/14/rtsper1.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.