PT-2023-12998 · Fastweb · Fastweb Fastgate Mediaaccess Fga2130Fwb+1
Francyesc0
·
Published
2023-05-19
·
Updated
2025-01-21
·
CVE-2022-30114
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Fastweb FASTGate MediaAccess FGA2130FWB version 18.3.n.0482 FW 230 FGA2130
Fastweb FASTGate MediaAccess DGA4131FWB versions up to 18.3.n.0462 FW 261 DGA4131
Description
A heap-based buffer overflow in a network service allows a remote attacker to reboot the device through a crafted HTTP request, causing Denial of Service (DoS).
Recommendations
For Fastweb FASTGate MediaAccess FGA2130FWB version 18.3.n.0482 FW 230 FGA2130, consider disabling the network service temporarily until a patch is available.
For Fastweb FASTGate MediaAccess DGA4131FWB versions up to 18.3.n.0462 FW 261 DGA4131, restrict access to the device through crafted HTTP requests to minimize the risk of exploitation.
As a temporary workaround, avoid using the vulnerable network service until the issue is resolved.
Exploit
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fastweb Fastgate Mediaaccess Dga4131Fwb
Fastweb Fastgate Mediaaccess Fga2130Fwb