Denial of Service Vulnerability in Realtek RTL8762EKF-EVB Bluetooth SDK
CVE-2025-44526

6.5MEDIUM

Key Information:

Vendor: Realtek
Status: RTL8762E SDK
Vendor: CVE Published:; 9 July 2025

What is CVE-2025-44526?

The Realtek RTL8762EKF-EVB Bluetooth Low Energy SDK V1.4.0 contains a critical vulnerability due to insufficient permission checks on essential fields in BLE data packets. This flaw enables attackers to craft and send specially designed LL_Length_Req packets, leading to Denial of Service (DoS) scenarios that can severely disrupt device operations. It is crucial for users and developers to address this vulnerability promptly to ensure the integrity and reliability of their Bluetooth communications.

References

http://realtek.com

http://rtl8762ekf-evb.com

https://github.com/yangting111/BLE_TEST/blob/main/result/...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 9, 2025
Vulnerability Reserved
Apr 22, 2025