CVE-2024-11857 – Realtek Bluetooth HCI Adaptor Link Following Privilege Escalation

CVE ID : CVE-2024-11857

Published : June 2, 2025, 4:15 a.m. | 2 hours, 7 minutes ago

Description : Bluetooth HCI Adaptor from Realtek has a Link Following vulnerability. Local attackers with regular privileges can create a symbolic link with the same name as a specific file, causing the product to delete arbitrary files pointed to by the link. Subsequently, attackers can leverage arbitrary file deletion to privilege escalation.

Severity: 7.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…