Realtek: >> Ecos Msdk Firmware Security Vulnerabilities
In Realtek eCos RSDK 1.5.7p1 and MSDK 4.9.4p1, the SIP ALG function that rewrites SDP data has a stack-based buffer overflow. This allows an attacker to remotely execute code without authentication via a crafted SIP packet that contains malicious SDP data.
CVSS Score
9.8
EPSS Score
0.291
Published
2022-08-01