CVE-2024-11857: Realtek Bluetooth HCI Adaptor - Privilege Escalation

7.8 CVSS

Description

Bluetooth HCI Adaptor from Realtek has a Link Following vulnerability. Local attackers with regular privileges can create a symbolic link with the same name as a specific file, causing the product to delete arbitrary files pointed to by the link. Subsequently, attackers can leverage arbitrary file deletion to privilege escalation.

Classification

CVE ID: CVE-2024-11857

CVSS Base Severity: HIGH

CVSS Base Score: 7.8

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem Types

CWE-59 Improper Link Resolution Before File Access ('Link Following')

Affected Products

Vendor: Realtek

Product: Bluetooth HCI Adaptor

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 4.53% (scored less or equal to compared to others)

EPSS Date: 2025-06-07 (when was this score calculated)

Stakeholder-Specific Vulnerability Categorization (SSVC)

SSVC Exploitation: none

SSVC Technical Impact: total

SSVC Automatable: false

References

https://nvd.nist.gov/vuln/detail/CVE-2024-11857
https://www.twcert.org.tw/tw/cp-132-10160-76012-1.html
https://www.twcert.org.tw/en/cp-139-10161-fa1b5-2.html

Timeline

2025-06-02 04:40:18 UTC
CVE

Realtek Bluetooth HCI Adaptor - Privilege Escalation