CVE-2021-3304

Sagemcom F@ST 3686 v2 3.495 devices have a buffer overflow via a long sessionKey to the goform/login URI.
References
Link Resource
https://twitter.com/j0nh4t/status/1349649975479840769 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:sagemcom:f\@st_3686_firmware:3.495:*:*:*:*:*:*:*
cpe:2.3:h:sagemcom:f\@st_3686:v2:*:*:*:*:*:*:*

Information

Published : 2021-01-26 10:16

Updated : 2021-02-03 07:57


NVD link : CVE-2021-3304

Mitre link : CVE-2021-3304


JSON object : View

CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Advertisement

dedicated server usa

Products Affected

sagemcom

  • f\@st_3686_firmware
  • f\@st_3686