PT-2026-2997 · Realtek · Realtek Sdk

Published

2026-01-15

Updated

2026-01-23

CVE-2026-22916

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions versions prior to 2.3

Description An attacker with low privileges may be able to trigger critical system functions such as reboot or factory reset without proper restrictions, potentially leading to service disruption or loss of configuration. The issue allows triggering critical system functions without proper restrictions.

Recommendations Update to a version prior to 2.3.

Fix

Incorrect Privilege Assignment

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-266

Related Identifiers

CVE-2026-22916

Affected Products

Realtek Sdk

PT-2026-2997 · Realtek · Realtek Sdk

CVE-2026-22916

Weakness Enumeration

Related Identifiers

Affected Products

References · 9