Lucene search
+L

98 matches found

CVE
CVE
added 2020/11/27 3:7 p.m.73 views

CVE-2020-29138

Technical details such as affected firmware versions, root-cause specifics, and exploitation information are not publicly provided in the supplied documents. Monitor for updates from vendors and official advisories.

5.3CVSS5.4AI score0.01116EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/09/14 12:15 p.m.20 views

CVE-2020-21733

Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp...

6.1CVSS0.00724EPSS
Exploits1References2
OSV
OSV
added 2020/09/14 12:15 p.m.6 views

CVE-2020-21733

Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp...

6.1CVSS5.8AI score0.00724EPSS
Exploits1References4
Prion
Prion
added 2020/09/14 12:15 p.m.19 views

Design/Logic Flaw

Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp...

4.3CVSS6AI score0.00724EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2020/09/14 11:50 a.m.31 views

CVE-2020-21733

Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp...

6.1AI score0.00724EPSS
Exploits1References2
CVE
CVE
added 2020/09/14 11:50 a.m.49 views

CVE-2020-21733

CVE-2020-21733 affects Sagemcom F@ST3686 v1.0 HUN 3.97.0 with XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, and RgVpnL2tpPptp.asp. The exact root cause, vulnerable input handling, and impact scope are not elaborated beyond XSS; no remediation details are provided in the connected docum...

6.1CVSS6AI score0.00724EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/09/14 12:0 a.m.3 views

PT-2020-15386

Name of the Vulnerable Software and Affected Versions Sagemcom F@ST3686 version 1.0 HUN 3.97.0 Description The issue is related to a security problem where an attacker can inject malicious code. The estimated number of potentially affected devices worldwide is not available. Technical details abo...

6.1CVSS5.9AI score0.00724EPSS
Exploits1References8
CNVD
CNVD
added 2020/09/03 12:0 a.m.3 views

Sagemcom F@ST 5280 routers elevation of privilege vulnerability

Sagemcom F@ST 5280 routers is a router product. A deserialization vulnerability exists in firmware version 1.150.61 in the Sagemcom F@ST 5280 routers, which originates when any authenticated user performs an elevation of privilege on any other user. An attacker could exploit the vulnerability to...

9CVSS7.2AI score0.03672EPSS
Exploits3References1
NVD
NVD
added 2020/09/01 6:15 p.m.29 views

CVE-2020-24034

Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sessid, nonce, and ha1 values inside of the serialized session cookie, an attacker may...

9CVSS8.9AI score0.03672EPSS
Exploits3References4
OSV
OSV
added 2020/09/01 6:15 p.m.3 views

CVE-2020-24034

Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sessid, nonce, and ha1 values inside of the serialized session cookie, an attacker may...

8.8CVSS5.8AI score0.03672EPSS
Exploits3References4
Prion
Prion
added 2020/09/01 6:15 p.m.13 views

Deserialization of untrusted data

Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sessid, nonce, and ha1 values inside of the serialized session cookie, an attacker may...

9CVSS8.9AI score0.03672EPSS
Exploits3References4Affected Software1
Cvelist
Cvelist
added 2020/09/01 5:20 p.m.25 views

CVE-2020-24034

Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sessid, nonce, and ha1 values inside of the serialized session cookie, an attacker may...

8.9AI score0.03672EPSS
Exploits3References4
CVE
CVE
added 2020/09/01 5:20 p.m.79 views

CVE-2020-24034

CVE-2020-24034 affects Sagemcom F@ST 5280 routers running firmware version 1.150.61. The issue is an insecure deserialization in the authenticated flow that lets a logged-in user alter a serialized session cookie (sess_id, nonce, ha1) to assume another user’s role, including an internal account w...

9CVSS8.8AI score0.03672EPSS
Exploits3References4Affected Software1
0day.today
0day.today
added 2020/09/01 12:0 a.m.59 views

Sagemcom F@ST 5280 Privilege Escalation Vulnerability

Sagemcom F@ST 5280 routers using firmware version 1.150.61, and possibly others, have an insecure deserialization vulnerability that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sessid, nonce, and ha1 values inside of the...

9CVSS8.8AI score0.03672EPSS
Exploits3
Packet Storm
Packet Storm
added 2020/09/01 12:0 a.m.309 views

Sagemcom F@ST 5280 Privilege Escalation

privilege escalation Date: 08-31-2020 Exploit Author: Ryan Delaney Author Contact: ryan.delaney owasp org Author LinkedIn: https://www.linkedin.com/in/infosecrd/ Vendor Homepage: https://sagemcom.com/en Software Link: N/A F@ST 5280 firmware not published Version: F@ST 5280 router, F/W 1.150.61,...

0.7AI score0.03672EPSS
Exploits3
0day.today
0day.today
added 2020/01/15 12:0 a.m.103 views

Sagemcom [email protected] 3890 (50_10_19-T1) Cable Modem - Cable Haunt Remote Code Execution Exploit

// EDB Note: Download https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47936.zip function buf2hexbuffer // buffer is an ArrayBuffer return Array.prototype.map.callnew Uint8Arraybuffer, x = '00' + x.toString16.slice-2.join''; function insertAtarr, index, toInsert...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2020/01/15 12:0 a.m.15 views

Sagemcom F@ST 3890 (50_10_19-T1) Cable Modem - Cable Haunt Remote Code Execution

Sagemcom F@ST 3890 501019-T1 Cable Modem - Cable Haunt Remote Code Execution // EDB Note: Download https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47936.zip function buf2hexbuffer // buffer is an ArrayBuffer return Array.prototype.map.callnew Uint8Arraybuffer, x...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2020/01/15 12:0 a.m.143 views

Sagemcom F@ST 3890 (50_10_19-T1) Cable Modem - 'Cable Haunt' Remote Code Execution

// EDB Note: Download https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/47936.zip function buf2hexbuffer // buffer is an ArrayBuffer return Array.prototype.map.callnew Uint8Arraybuffer, x = '00' + x.toString16.slice-2.join''; function insertAtarr, index, toInsert...

7.4AI score
Exploits0
CNVD
CNVD
added 2020/01/13 12:0 a.m.4 views

Multiple vendor based Broadcom cable modems buffer overflow vulnerability

Sagemcom F@st 5260, Sagemcom F@st 3890 etc. is a router.Technicolor TC7230 STEB is a wireless router. A buffer overflow vulnerability exists in Broadcom cable modems based on multiple vendors. A remote attacker could execute arbitrary code in the kernel via JavaScript running in the victim's...

9.3CVSS8.1AI score0.22924EPSS
Exploits3References1
NVD
NVD
added 2020/01/09 1:15 p.m.15 views

CVE-2019-19494

Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. Examples of affected products include Sagemcom F@st 3890 prior to 50.10.21T4, Sagemcom F@...

9.3CVSS8.9AI score0.22924EPSS
Exploits3References4
Rows per page
Query Builder