← Back

Sagemcom

sagemcom

9 CVEs • 12 products

Products (12)

Click to collapse
Toggle
F@st 3686 Firmware
f@st_3686_firmware
5 CVEs
Livebox Firmware
livebox_firmware
1 CVE
F@st 5260 Firmware
f@st_5260_firmware
1 CVE
F@st 3890 Firmware
f@st_3890_firmware
1 CVE
F@st 5280 Router Firmware
f@st_5280_router_firmware
1 CVE
F@st 3486 Router Firmware
f@st_3486_router_firmware
1 CVE
Livebox
livebox
0 CVEs
F@st 5260
f@st_5260
0 CVEs
F@st 3890
f@st_3890
0 CVEs
F@st 3686
f@st_3686
0 CVEs
F@st 5280 Router
f@st_5280_router
0 CVEs
F@st 3486 Router
f@st_3486_router
0 CVEs

CVEs (9)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-29329
1Sagemcom
1F@st 3686 Firmware
Jan 22, 2026
Jan 12, 2026
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Buffer Overflow in the ippprint (Internet Printing Protocol) service in Sagemcom F@st 3686 MAGYAR_4.121.0 allows remote attacker to execute arbitrary code by sending a crafted HTTP request.
CVE-2024-1623
1Sagemcom
1F@st 3686 Firmware
Jan 23, 2025
Mar 14, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
Insufficient session timeout vulnerability in the FAST3686 V2 Vodafone router from Sagemcom. This vulnerability could allow a local attacker to access the administration panel without requiring login credentials. This vu...Show more
Insufficient session timeout vulnerability in the FAST3686 V2 Vodafone router from Sagemcom. This vulnerability could allow a local attacker to access the administration panel without requiring login credentials. This vulnerability is possible because the 'Login.asp and logout.asp' files do not handle session details correctly.Show less
CVE-2021-3304
1Sagemcom
1F@st 3686 Firmware
Nov 21, 2024
Jan 26, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Sagemcom F@ST 3686 v2 3.495 devices have a buffer overflow via a long sessionKey to the goform/login URI.
CVE-2020-29138
1Sagemcom
1F@st 3486 Router Firmware
Nov 21, 2024
Nov 27, 2020
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Incorrect Access Control in the configuration backup path in SAGEMCOM F@ST3486 NET DOCSIS 3.0, software NET_4.109.0, allows remote unauthenticated users to download the router configuration file via the /backupsettings.c...Show more
Incorrect Access Control in the configuration backup path in SAGEMCOM F@ST3486 NET DOCSIS 3.0, software NET_4.109.0, allows remote unauthenticated users to download the router configuration file via the /backupsettings.conf URI, when any valid session is running.Show less
CVE-2020-21733
1Sagemcom
1F@st 3686 Firmware
Nov 21, 2024
Sep 14, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp.
CVE-2020-24034
1Sagemcom
1F@st 5280 Router Firmware
Nov 21, 2024
Sep 1, 2020
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sess_id, non...Show more
Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sess_id, nonce, and ha1 values inside of the serialized session cookie, an attacker may alter the user value inside of this cookie, and assume the role and permissions of the user specified. By assuming the role of the user internal, which is inaccessible to end users by default, the attacker gains the permissions of the internal account, which includes the ability to flash custom firmware to the router, allowing the attacker to achieve a complete compromise.Show less
CVE-2019-19494
4Compal
NetgearSagemcom+1 more
77284e Firmware
7486e FirmwareC6250emr Firmware+4 more
Nov 21, 2024
Jan 9, 2020
N/A· v4
8.8 HIGH· v3
9.3 HIGH· v2
Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. Examples of...Show more
Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. Examples of affected products include Sagemcom F@st 3890 prior to 50.10.21_T4, Sagemcom F@st 3890 prior to 05.76.6.3f, Sagemcom F@st 3686 3.428.0, Sagemcom F@st 3686 4.83.0, NETGEAR CG3700EMR 2.01.05, NETGEAR CG3700EMR 2.01.03, NETGEAR C6250EMR 2.01.05, NETGEAR C6250EMR 2.01.03, Technicolor TC7230 STEB 01.25, COMPAL 7284E 5.510.5.11, and COMPAL 7486E 5.510.5.11.Show less
CVE-2019-9555
1Sagemcom
1F@st 5260 Firmware
Nov 21, 2024
Mar 5, 2019
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Sagemcom F@st 5260 routers using firmware version 0.4.39, in WPA mode, default to using a PSK that is generated from a 2-part wordlist of known values and a nonce with insufficient entropy. The number of possible PSKs is...Show more
Sagemcom F@st 5260 routers using firmware version 0.4.39, in WPA mode, default to using a PSK that is generated from a 2-part wordlist of known values and a nonce with insufficient entropy. The number of possible PSKs is about 1.78 billion, which is too small.Show less
CVE-2017-6552
1Sagemcom
1Livebox Firmware
May 13, 2026
Mar 9, 2017
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 devices have an insufficiently large default value for the maximum IPv6 routing table size: it can be filled within minutes. An attacker can exploit this issue to render the affect...Show more
Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 devices have an insufficiently large default value for the maximum IPv6 routing table size: it can be filled within minutes. An attacker can exploit this issue to render the affected system unresponsive, resulting in a denial-of-service condition for telephone, Internet, and TV services.Show less