Russian Vulnerability Scanner Database

Back to List

BDU:2020-00030

Scores

EPSS

0.000none0.0%
0%20%40%60%80%100%

Percentile: 0.0%

CVSS

8.3high3.x
0246810

CVSS Score: 8.3/10

All CVSS Scores

CVSS 3.x
8.3

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

CVSS 2.0
7.6

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Description

Уязвимость обработчика спектрального анализатора микропрограммного обеспечения маршрутизаторов Netgear CG3700EMR, COMPAL 7486E, COMPAL 7284E, Sagemcom F@st 3686, Sagemcom F@st 3890, Netgear C6250EMR, Technicolor TC7230, Cisco EPC3928AD, Humax HGB10R-02, Arris Surfboard SB8200 вызвана переполнением буфера в динамической памяти. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, получить полный контроль над устройством с помощью специально созданной веб-страницы

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7

Sources

bdu

Related Vulnerabilities

CVE-2019-19494

Exploits

Exploit ID: BDU:2020-00030

Source: bdu_exploit

URL: https://bdu.fstec.ru/vul

Reference Links

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-19494
https://www.securitylab.ru/news/503946.php
https://www.opennet.ru/opennews/art.shtml?num=52169
https://nvd.nist.gov/vuln/detail/CVE-2019-19494
https://cablehaunt.com/
https://github.com/Lyrebirds/Cable-Haunt-Report/releases/download/2.4/report.pdf
https://github.com/Lyrebirds/Fast8690-exploit
https://www.broadcom.com
https://github.com/Lyrebirds/cable-haunt-vulnerability-test

Recommendations

Source: bdu

Ограничить использование программно-аппаратного средства

URL: https://bdu.fstec.ru/vul/2020-00030

Vulnerable Software (13)

Type: Configuration

Vendor: arris group inc.

Product: arris surfboard sb8200

Operating System: * *

Trait: 
{  "version_exact": "0200.174F.311915"}

Source: bdu

Type: Configuration

Vendor: cisco systems inc.

Product: cisco epc3928ad

Operating System: * *

Trait: 
{  "version_exact": "e3928A-E10-5"}

Source: bdu

Type: Configuration

Vendor: compal electronics

Product: compal 7284e

Operating System: * *

Trait: 
{  "version_exact": "5.510.5.11"}

Source: bdu

Type: Configuration

Vendor: compal electronics

Product: compal 7486e

Operating System: * *

Trait: 
{  "version_exact": "5.510.5.11"}

Source: bdu

Type: Configuration

Vendor: humax

Product: humax hgb10r-02

Operating System: * *

Trait: 
{  "version_exact": "BRGCAB 1.0.03"}

Source: bdu

Type: Configuration

Vendor: netgear

Product: c6250emr

Operating System: * *

Trait: 
{  "version_exact": "2.01.05"}

Source: bdu

Type: Configuration

Vendor: netgear

Product: cg3700emr

Operating System: * *

Trait: 
{  "version_exact": "2.01.05"}

Source: bdu

Type: Configuration

Vendor: netgear

Product: cg3700emr

Operating System: * *

Trait: 
{  "version_exact": "2.01.03"}

Source: bdu

Type: Configuration

Vendor: sagemcom

Product: sagemcom f@st 3686

Operating System: * *

Trait: 
{  "version_exact": "4.83.0"}

Source: bdu

Type: Configuration

Vendor: sagemcom

Product: sagemcom f@st 3686

Operating System: * *

Trait: 
{  "version_exact": "3.428.0"}

Source: bdu

Type: Configuration

Vendor: sagemcom

Product: sagemcom f@st 3890

Operating System: * *

Trait: 
{  "version_end_including": "50.10.21_T4"}

Source: bdu

Type: Configuration

Vendor: sagemcom

Product: sagemcom f@st 3890

Operating System: * *

Trait: 
{  "version_end_including": "05.76.6.3f"}

Source: bdu

Type: Configuration

Vendor: technicolor sa

Product: technicolor tc7230

Operating System: * *

Trait: 
{  "version_exact": "STEB 01.25"}

Source: bdu

End of list