| TVN ID | TVN-202209016 |
|---|---|
| CVE ID | CVE-2022-32967 |
| CVSS | 2.1 (Low) CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N |
| Affected Products | Realtek RTL8111EP-CG/RTL8111FP-CG Firmware version before 3.0.0.2019090 (old framework) or 5.0.10 (new framework) |
| Description | RTL8111EP-CG/RTL8111FP-CG DASH function has hard-coded password. An unauthenticated physical attacker can use the hard-coded default password during system reboot triggered by other user, to acquire partial system information such as serial number and server information. |
| Solution | Contact tech support from Realtek |
| Credit | Realtek |
| Public Date | 2022-11-29 |
:::