CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-18990

A partial authentication bypass vulnerability exists on Realtek RTL8812AR 1.21WW, RTL8196D 1.0.0, RTL8192ER 2.10, and RTL8881AN 1.09 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a response is sent back as an encrypted frame, which would allow an attacker to discern information or potentially modify data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.2%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.8

References

Products affected by CVE-2019-18990

Realtek » Rtl8192er » Version: N/A

cpe:2.3:h:realtek:rtl8192er:-
Realtek » Rtl8196d » Version: N/A

cpe:2.3:h:realtek:rtl8196d:-
Realtek » Rtl8812ar » Version: N/A

cpe:2.3:h:realtek:rtl8812ar:-
Realtek » Rtl8881an » Version: N/A

cpe:2.3:h:realtek:rtl8881an:-
Realtek » Rtl8192er Firmware » Version: 2.10

cpe:2.3:o:realtek:rtl8192er_firmware:2.10
Realtek » Rtl8196d Firmware » Version: 1.0.0

cpe:2.3:o:realtek:rtl8196d_firmware:1.0.0
Realtek » Rtl8812ar Firmware » Version: 1.21ww

cpe:2.3:o:realtek:rtl8812ar_firmware:1.21ww
Realtek » Rtl8881an Firmware » Version: 1.09

cpe:2.3:o:realtek:rtl8881an_firmware:1.09

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-18990

Products

Pricing

Contact Us