← Back

F@st 3686 Firmware

f@st_3686_firmware

Vendor: Sagemcom • 5 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-29329
1Sagemcom
1F@st 3686 Firmware
Jan 22, 2026
Jan 12, 2026
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Buffer Overflow in the ippprint (Internet Printing Protocol) service in Sagemcom F@st 3686 MAGYAR_4.121.0 allows remote attacker to execute arbitrary code by sending a crafted HTTP request.
CVE-2024-1623
1Sagemcom
1F@st 3686 Firmware
Jan 23, 2025
Mar 14, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
Insufficient session timeout vulnerability in the FAST3686 V2 Vodafone router from Sagemcom. This vulnerability could allow a local attacker to access the administration panel without requiring login credentials. This vu...Show more
Insufficient session timeout vulnerability in the FAST3686 V2 Vodafone router from Sagemcom. This vulnerability could allow a local attacker to access the administration panel without requiring login credentials. This vulnerability is possible because the 'Login.asp and logout.asp' files do not handle session details correctly.Show less
CVE-2021-3304
1Sagemcom
1F@st 3686 Firmware
Nov 21, 2024
Jan 26, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Sagemcom F@ST 3686 v2 3.495 devices have a buffer overflow via a long sessionKey to the goform/login URI.
CVE-2020-21733
1Sagemcom
1F@st 3686 Firmware
Nov 21, 2024
Sep 14, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp.
CVE-2019-19494
4Compal
NetgearSagemcom+1 more
77284e Firmware
7486e FirmwareC6250emr Firmware+4 more
Nov 21, 2024
Jan 9, 2020
N/A· v4
8.8 HIGH· v3
9.3 HIGH· v2
Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. Examples of...Show more
Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. Examples of affected products include Sagemcom F@st 3890 prior to 50.10.21_T4, Sagemcom F@st 3890 prior to 05.76.6.3f, Sagemcom F@st 3686 3.428.0, Sagemcom F@st 3686 4.83.0, NETGEAR CG3700EMR 2.01.05, NETGEAR CG3700EMR 2.01.03, NETGEAR C6250EMR 2.01.05, NETGEAR C6250EMR 2.01.03, Technicolor TC7230 STEB 01.25, COMPAL 7284E 5.510.5.11, and COMPAL 7486E 5.510.5.11.Show less