Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SNORE Interface Unauthenticated Remote Code Execution
Vulnerability Description
The device exposes a web interface on ports TCP/3030 and TCP/9882. This web service runs lighttpd, which implements the “SNORE” interface. This interface is affected by a stack buffer overflow vulnerability due to insecure path parsing. An attacker with access to the LAN network interface could use a specially crafted HTTP request to exploit a buffer overflow on the modem.
CVSS Information
N/A
Vulnerability Type
未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)
Vulnerability Title
Viasat多款产品 安全漏洞
Vulnerability Description
Viasat RM5110等都是美国Viasat公司的产品。Viasat RM5110是一款卫星调制解调器路由器。Viasat RM5111是一款卫星调制解调器路由器。Viasat RG1100是一款调制解调器路由器。 Viasat多款产品存在安全漏洞,该漏洞源于lighttpd中SNORE接口路径解析不安全,可能导致栈缓冲区溢出攻击。以下产品受到影响:Viasat RM4100、RM4200、EM4100、RM5110、RM5111、RG1000、RG1100、EG1000和EG1020。
CVSS Information
N/A
Vulnerability Type
N/A