CVE-2019-19494

high-risk

Published 2020-01-09

Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. Examples of affected products include Sagemcom F@st 3890 prior to 50.10.21_T4, Sagemcom F@st 3890 prior to 05.76.6.3f, Sagemcom F@st 3686 3.428.0, Sagemcom F@st 3686 4.83.0, NETGEAR CG3700EMR 2.01.05, NETGEAR CG3700EMR 2.01.03, NETGEAR C6250EMR 2.01.05, NETGEAR C6250EMR 2.01.03, Technicolor TC7230 STEB 01.25, COMPAL 7284E 5.510.5.11, and COMPAL 7486E 5.510.5.11.

Do I need to act?

69.1% chance of exploitation in next 30 days

EPSS score — higher than 31% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

NETWORK / LOW complexity

Affected Products (10)

F\@St 3890 Firmware

F\@St 3686 Firmware

Cg3700Emr Firmware

C6250Emr Firmware

Tc7230 Steb Firmware

7284E Firmware

7486E Firmware

Affected Vendors

Netgear Technicolor Sagemcom Compal

References (8)

Exploit https://cablehaunt.com

Technical Description https://github.com/Lyrebirds/Cable-Haunt-Report/releases/download/2.4/report.pdf

Exploit https://github.com/Lyrebirds/Fast8690-exploit

Product https://www.broadcom.com

Exploit https://cablehaunt.com

Technical Description https://github.com/Lyrebirds/Cable-Haunt-Report/releases/download/2.4/report.pdf

Exploit https://github.com/Lyrebirds/Fast8690-exploit

Product https://www.broadcom.com

/ 100

high-risk

Severity 30/34 · Critical

Exploitability 19/34 · Moderate

Exposure 16/34 · Moderate