Vulnerabilities > CVE-2024-41285 - Out-of-bounds Write vulnerability in Fastcom Fw300R Firmware 1.3.13Build141023Rel.61347N

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

fastcom

CWE-787

critical

NVD

Published: 2024-08-26

Updated: 2024-08-27

Summary

A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via a crafted file path.

Vulnerable Configurations

Part	Description	Count
OS	Fastcom Fastcom Fw300R Firmware 1.3.13_Build_141023_Rel.61347N	1
Hardware	Fastcom Fastcom Fw300R -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.fastcom.com.cn/product-8.html
https://github.com/Giles-one/FW300RouterCrack/
https://gist.github.com/Giles-one/834b2becd7abebc3cabea0484301d149