CVE-2024-6198
EUVD-2025-1253725.04.2025, 13:15
The device exposes a web interface on ports TCP/3030 and TCP/9882. This web service runs lighttpd, which implements the “SNORE” interface. This interface is affected by a stack buffer overflow vulnerability due to insecure path parsing. An attacker with access to the LAN network interface could use a specially crafted HTTP request to exploit a buffer overflow on the modem.
Awaiting analysis
This vulnerability is currently awaiting analysis.