CVE-2025-8298

Name of the Vulnerable Software and Affected Versions Realtek RTL8811AU drivers (affected versions not specified)

Description A flaw exists within the N6CQueryInformationHandleCustomized11nOids function in Realtek RTL8811AU drivers. The issue is due to insufficient validation of user-supplied data, leading to a read past the end of an allocated buffer. This can allow local attackers to disclose sensitive information. An attacker must first obtain the ability to execute low-privileged code on the target system to exploit this issue. Exploitation of this vulnerability, in conjunction with other vulnerabilities, may lead to arbitrary code execution in the kernel context.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.