CVE-2025-8302
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-02

Last updated on: 2025-09-10

Assigner: Zero Day Initiative

Description
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Realtek rtl81xx SDK Wi-Fi driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the N6CSet_DOT11_CIPHER_DEFAULT_KEY function. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-26553.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-02
Last Modified
2025-09-10
Generated
2026-06-16
AI Q&A
2025-09-02
EPSS Evaluated
2026-06-14
NVD
CVE-2025-8302
EUVD
EUVD-2025-26434
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
realtek wi-fi_usb_driver to 1030.52.0325.2025 (exc)
realtek rtl8811au *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-122 A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-8302 is a local privilege escalation vulnerability in the Realtek rtl81xx SDK Wi-Fi driver. It occurs due to improper validation of the length of user-supplied data before copying it into a fixed-length heap-based buffer within the N6CSet_DOT11_CIPHER_DEFAULT_KEY function. This leads to a heap-based buffer overflow, which an attacker who already has low-privileged code execution can exploit to escalate their privileges and execute arbitrary code with SYSTEM-level permissions. [1]

Impact Analysis

This vulnerability can allow an attacker who has already gained low-level access to your system to escalate their privileges to SYSTEM level. This means they could execute arbitrary code with the highest system privileges, potentially leading to full control over the affected system, compromising confidentiality, integrity, and availability of data and system resources. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-8302. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart