Description
The device exposes a web interface on ports TCP/3030 and TCP/9882. This web service runs lighttpd, which implements the “SNORE” interface. This interface is affected by a stack buffer overflow vulnerability due to insecure path parsing. An attacker with access to the LAN network interface could use a specially crafted HTTP request to exploit a buffer overflow on the modem.
References (1)
Core 1
Core References
Various Sources third-party-advisory
technical-description
https://www.onekey.com/resource/security-advisory-rce-on-viasat-modems-cve-2024-6198
Scores
CVSS v4
7.7
EPSS
0.0009
EPSS Percentile
24.9%
CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/S:N/AU:Y/R:U/V:C/RE:M/U:Red
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-120
Status
published
Products (9)
Viasat/EG1000
< 4.3.0.1
Viasat/EG1020
< 4.3.0.1
Viasat/EM4100
< 3.8.0.4
Viasat/RG1000
< 4.3.0.1
Viasat/RG1100
< 4.3.0.1
ViaSat/RM4100
< 3.8.0.4
Viasat/RM4200
< 3.8.0.4
Viasat/RM5110
< 4.3.0.1
Viasat/RM5111
< 4.3.0.1
Published
Apr 25, 2025
Tracked Since
Feb 18, 2026