CVE-2022-25479

Name of the Vulnerable Software and Affected Versions Realtek RtsPer driver for PCIe Card Reader versions prior to 10.0.22000.21355 Realtek RtsUer driver for USB Card Reader versions prior to 10.0.22000.31274

Description The issue is related to memory release errors in the Realtek SD card reader device firmware. Exploitation of this issue may allow an attacker to access kernel memory from both the stack and the heap.

Recommendations For Realtek RtsPer driver for PCIe Card Reader versions prior to 10.0.22000.21355, update to version 10.0.22000.21355 or later. For Realtek RtsUer driver for USB Card Reader versions prior to 10.0.22000.31274, update to version 10.0.22000.31274 or later.