CVE-2019-19494

CVE-2019-19494 describes a buffer overflow in Broadcom-based cable modems that enables remote code execution at the kernel level via JavaScript in a victim’s browser. Affected devices include Sagemcom F@st 3890 (before 50.10.21_T4; before 05.76.6.3f), Sagemcom F@st 3686 (3.428.0; 4.83.0), NETGEAR...

CVE-2024-1623

The CVE-2024-1623 entry concerns the Sagemcom FAST3686 V2 Vodafone router. Affected component: the router’s web admin login flow, specifically Login.asp and logout.asp, with an insufficient session timeout that fails to manage session details correctly. Impact described as allowing a local attack...

CVE-2021-3304

CVE-2021-3304 affects Sagemcom F@ST 3686 v2 with firmware 3.495; a buffer overflow is triggered by a long sessionKey to the /goform/login URI. Connected documents confirm the affected product and input vector, but do not provide exploitation details or remediation steps in the supplied material.

CVE-2020-21733

CVE-2020-21733 affects Sagemcom F@ST3686 v1.0 HUN 3.97.0 with XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, and RgVpnL2tpPptp.asp. The exact root cause, vulnerable input handling, and impact scope are not elaborated beyond XSS; no remediation details are provided in the connected docum...

CVE-2025-29329

CVE-2025-29329 affects the Sagemcom F@st 3686 ippprint service. A buffer overflow in the ippprint HTTP handling leads to remote code execution via a crafted HTTP request, affecting MAGYAR_4.121.0 and similar builds. Evidence from multiple sources confirms the vulnerability in the ippprint compone...