Realtek

A high-severity vulnerability has been discovered in Realtek’s Bluetooth HCI Adaptor that allows local attackers to delete arbitrary files and potentially escalate privileges on affected systems. The vulnerability, tracked as CVE-2024-11857, was published to the GitHub Advisory Database and represents a significant security risk for systems utilizing Realtek Bluetooth hardware components. The flaw stems from a Link Following weakness classified under CWE-59 in the Common Weakness Enumeration database. This flaw enables local attackers with regular user privileges to exploit the Bluetooth HCI Adaptor’s file handling mechanisms through symbolic link manipulation. The attack vector requires minimal complexity and no user interaction, making it particularly concerning for security professionals.

Source: https://cybersecuritynews.com/bluetooth-hci-adaptor-realtek-vulnerability/

TPRM report: https://scoringcyber.rankiteo.com/company/realtek-semiconductor-corp.

"id": "rea739060225",
"linkid": "realtek-semiconductor-corp.",
"type": "Vulnerability",
"date": "6/2025",
"severity": "25",
"impact": "",
"explanation": "Attack without any consequences: Attack in which data is not compromised"

{'affected_entities': [{'industry': 'Technology',
                        'name': 'Realtek',
                        'type': 'Organization'}],
 'attack_vector': 'Local system access',
 'date_publicly_disclosed': '2024-01-01T00:00:00Z',
 'description': 'A high-severity vulnerability in Realtek’s Bluetooth HCI '
                'Adaptor allows local attackers to delete arbitrary files and '
                'potentially escalate privileges on affected systems.',
 'impact': {'systems_affected': ['Realtek Bluetooth HCI Adaptor']},
 'post_incident_analysis': {'corrective_actions': ['Implement principle of '
                                                   'least privilege policies',
                                                   'Monitor unusual symbolic '
                                                   'link creation patterns',
                                                   'Network segmentation',
                                                   'Endpoint detection '
                                                   'solutions',
                                                   'Temporarily disable '
                                                   'non-essential Bluetooth '
                                                   'functionality'],
                            'root_causes': 'Link Following weakness classified '
                                           'under CWE-59'},
 'recommendations': ['Assess exposure to the vulnerability',
                     'Implement principle of least privilege policies',
                     'Monitor unusual symbolic link creation patterns',
                     'Network segmentation',
                     'Endpoint detection solutions',
                     'Temporarily disable non-essential Bluetooth '
                     'functionality'],
 'references': [{'source': 'GitHub Advisory Database'}],
 'response': {'containment_measures': ['Implement principle of least privilege '
                                       'policies',
                                       'Monitor unusual symbolic link creation '
                                       'patterns',
                                       'Network segmentation',
                                       'Endpoint detection solutions',
                                       'Temporarily disable non-essential '
                                       'Bluetooth functionality']},
 'title': 'Realtek Bluetooth HCI Adaptor Vulnerability',
 'type': 'Vulnerability',
 'vulnerability_exploited': 'CVE-2024-11857'}

Realtek

Mitsubishi Electric

ONGC

Brother Industries