CVE-2024-40431

Name of the Vulnerable Software and Affected Versions: Realtek SD card reader driver versions prior to 10.0.26100.21374

Description: The issue is related to a buffer overflow in the RtsPer.sys driver, which can be exploited by an attacker to write to arbitrary kernel memory locations. This can be achieved through the IOCTL SCSI PASS THROUGH control of the SD card reader driver, even by a low-privileged user. The vulnerability affects laptops from various manufacturers, including Dell, Lenovo, HP, and MSI, and can risk system compromise by enabling kernel memory access.

Recommendations: For Realtek SD card reader driver versions prior to 10.0.26100.21374, update the driver to version 10.0.26100.21374 or higher to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable driver until a patch is applied. Avoid using the IOCTL SCSI PASS THROUGH control of the SD card reader driver until the issue is resolved.