CVE-2024-6198

SNORE Interface Unauthenticated Remote Code Execution

CVSS 7.7 HIGHEPSS 0.3%CWE-120

The device exposes a web interface on ports TCP/3030 and TCP/9882. This web service runs lighttpd, which implements the “SNORE” interface. This interface is affected by a stack buffer overflow vulnerability due to insecure path parsing. An attacker with access to the LAN network interface could use a specially crafted HTTP request to exploit a buffer overflow on the modem.

CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/S:N/AU:Y/R:U/V:C/RE:M/U:Red

Productos afectados

Viasat · EG1000 Viasat · EG1020 Viasat · EM4100 Viasat · RG1000 Viasat · RG1100 Viasat · RM4200 Viasat · RM5110 Viasat · RM5111 ViaSat · RM4100

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.onekey.com/resource/security-advisory-rce-on-viasat-modems-cve-2024-6198