CVE-2022-27255

Name of the Vulnerable Software and Affected Versions Realtek eCos RSDK version 1.5.7p1 Realtek MSDK version 4.9.4p1

Description The SIP ALG function in Realtek eCos RSDK and MSDK has a stack-based buffer overflow that allows an attacker to remotely execute code without authentication via a crafted SIP packet containing malicious SDP data. This issue can be exploited by sending a specially crafted UDP packet, and it does not require user interaction or access to the admin interface. The vulnerability is notable for allowing attacks on devices with disabled web interface access from external networks. Potentially, millions of devices, from routers to signal amplifiers, are affected.

Recommendations For Realtek eCos RSDK version 1.5.7p1, consider disabling the SIP ALG function as a temporary workaround until a patch is available. For Realtek MSDK version 4.9.4p1, restrict access to the SIP ALG function to minimize the risk of exploitation until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.