CVE-2020-25855

Name of the Vulnerable Software and Affected Versions: Realtek RTL8195A Wi-Fi Module versions prior to 2.08

Description: The issue concerns a stack buffer overflow due to a lack of validation for the size parameter in a memcpy() operation within the AES UnWRAP() function. This can be exploited for remote code execution or denial of service. An attacker can impersonate an Access Point and target a vulnerable Wi-Fi client by injecting a crafted packet into the WPA2 handshake, but the attacker must know the network's PSK to exploit this.

Recommendations: For versions prior to 2.08, update to a version released in April 2020 or later to resolve the issue. As a temporary workaround, consider restricting access to the WPA2 handshake or implementing additional network segmentation to minimize the risk of exploitation.