Realtek RTL8195A Wi-Fi module could have been exploited to gain root access and take complete control of a device’s wireless communications. The flaws concern a mix of stack overflow, and out-of-bounds reads that stem from the module’s WPA2 four-way handshake mechanism during authentication. Realtek, in response, has released Ameba 2.0.8 with patches for all the vulnerabilities found by Vdoo. It’s worth noting that firmware versions released after April 21, 2020, already come with the necessary protections to thwart such takeover attacks.
Source: https://thehackernews.com/2021/02/critical-bugs-found-in-popular-realtek.html