CVE-2014-8361
Last modified
CVE-2014-8361 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023.. CISA has confirmed active exploitation in the wild. EPSS estimates a 99.98% chance of exploitation in the next 30 days.
Description
The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitation Status
This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by .
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-905l Firmware | <= 2.05b01 |
| Dlink | Dir-605l Firmware | <= 1.14b06 |
| Dlink | Dir-600l Firmware | <= 1.15 |
| Dlink | Dir-619l Firmware | <= 1.15 |
| Dlink | Dir-619l Firmware | <= 2.07b02 |
| Dlink | Dir-605l Firmware | <= 2.07b02 |
| Dlink | Dir-605l Firmware | <= 3.03b07 |
| Dlink | Dir-600l Firmware | <= 2.056b06 |
| Dlink | Dir-809 Firmware | <= 1.04b02 |
| Dlink | Dir-900l Firmware | < 1.15b01 |
| Realtek | Realtek Sdk | All versions |
| Dlink | Dir-501 Firmware | <= 1.01b04 |
| Dlink | Dir-515 Firmware | <= 1.01b04 |
| Dlink | Dir-615 Firmware | 10.01b02 |
| Dlink | Dir-615 Firmware | <= 6.06b03 |
| Aterm | Wg1900hp2 Firmware | <= 1.3.1 |
| Aterm | Wg1900hp Firmware | <= 2.5.1 |
| Aterm | Wg1800hp4 Firmware | <= 1.3.1 |
| Aterm | Wg1800hp3 Firmware | <= 1.5.1 |
| Aterm | Wg1200hs2 Firmware | <= 2.5.0 |
| Aterm | Wg1200hp3 Firmware | <= 1.3.1 |
| Aterm | Wg1200hp2 Firmware | <= 2.5.0 |
| Aterm | W1200ex Firmware | <= 1.3.1 |
| Aterm | W1200ex-Ms Firmware | <= 1.3.1 |
| Aterm | Wg1200hs Firmware | All versions |
| Aterm | Wg1200hp Firmware | All versions |
| Aterm | Wf800hp Firmware | All versions |
| Aterm | Wf300hp2 Firmware | All versions |
| Aterm | Wr8165n Firmware | All versions |
| Aterm | W500p Firmware | All versions |
| Aterm | W300p Firmware | All versions |
References
- http://jvn.jp/en/jp/JVN47580234/index.htmlThird Party Advisory
- http://jvn.jp/en/jp/JVN67456944/index.htmlThird Party Advisory
- http://packetstormsecurity.com/files/132090/Realtek-SDK-Miniigd-UPnP-SOAP-Command-Execution.htmlThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/74330Broken Link, Third Party Advisory, VDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-15-155/Third Party Advisory, VDB Entry
- https://sensorstechforum.com/hinatabot-cve-2014-8361-ddos/Third Party Advisory
- https://www.exploit-db.com/exploits/37169/Third Party Advisory, VDB Entry
- http://jvn.jp/en/jp/JVN47580234/index.htmlThird Party Advisory
- http://jvn.jp/en/jp/JVN67456944/index.htmlThird Party Advisory
- http://packetstormsecurity.com/files/132090/Realtek-SDK-Miniigd-UPnP-SOAP-Command-Execution.htmlThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/74330Broken Link, Third Party Advisory, VDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-15-155/Third Party Advisory, VDB Entry
- https://sensorstechforum.com/hinatabot-cve-2014-8361-ddos/Third Party Advisory
- https://www.exploit-db.com/exploits/37169/Third Party Advisory, VDB Entry
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-8361US Government Resource
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2014-8361?
How severe is CVE-2014-8361?
How do I fix CVE-2014-8361?
Are you affected by CVE-2014-8361?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST