CVE-2022-30114:Heap-based buffer overflow in the network service of Fastweb FASTGate devices (MediaAccess FGA2130FWB and DGA4131FWB) that allows remote attackers to reboot the device via a crafted HTTP request, causing denial of service.

splash
Back

Description Preview

This CVE covers a heap-based buffer overflow vulnerability (CWE-787 Out-of-bounds Write) in the network service of Fastweb FASTGate devices. Specifically, the issue affects FASTGate MediaAccess FGA2130FWB with firmware version 18.3.n.0482_FW_230_FGA2130 and FASTGate DGA4131FWB with firmware versions up to 18.3.n.0462_FW_261_DGA4131. An attacker can remotely exploit this flaw by sending a crafted HTTP request, which can cause the device to reboot and thereby result in a denial of service. The vulnerability is exploitable over the network with no authentication or user interaction required, and has a CVSS v3.1 base score of 7.5 (Network attack, no privileges, no user interaction, availability impact).

Overview

A heap-based buffer overflow in the network service of certain Fastweb FASTGate devices can be triggered remotely through crafted HTTP traffic, rebooting the device and causing a denial of service. Affected devices include FASTGate MediaAccess FGA2130FWB (firmware 18.3.n.0482_FW_230_FGA2130) and FASTGate DGA4131FWB (firmware up to 18.3.n.0462_FW_261_DGA4131). The flaw is categorized as CWE-787 (Out-of-bounds Write) with a CVSS v3.1 base score of 7.5, and requires no authentication or user interaction to be exploited over the network.

Remediation

  • Apply the latest official firmware update from Fastweb/your ISP that fixes CVE-2022-30114. Check the FASTGate support pages or contact your service provider for patched firmware versions and installation instructions.
  • If a patch is not yet available, implement mitigations to reduce exposure:
    • Disable or restrict WAN-facing remote management (HTTP/HTTPS) to trusted IPs or networks.
    • Place the FASTGate device behind a firewall or in a segmented network so management interfaces are not reachable from untrusted networks.
    • Review and tighten firewall rules to block unsolicited inbound traffic to the device’s management interfaces.
  • After applying any update or mitigation, verify device stability and monitor for reboots or abnormal behavior, and keep abreast of vendor advisories for new patches.
  • If the device cannot be patched or is end-of-life, consider replacing it with a vendor-supported model that receives security updates.

References

  • https://str0ng4le.github.io/jekyll/update/2023/05/12/fastgate-bof-cve-2022-30114/
  • https://www.fastweb.it/myfastweb/assistenza/guide/FASTGate/

Industry ExposureMost to least
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

  1. Accommodation & Food Services: Low
    Accommodation & Food Services
  2. Administrative, Support, Waste Management & Remediation Services: Low
    Administrative, Support, Waste Management & Remediation Services
  3. Agriculture, Forestry Fishing & Hunting: Low
    Agriculture, Forestry Fishing & Hunting
  4. Arts, Entertainment & Recreation: Low
    Arts, Entertainment & Recreation
  5. Construction: Low
    Construction
  6. Educational Services: Low
    Educational Services
  7. Finance and Insurance: Low
    Finance and Insurance
  8. Health Care & Social Assistance: Low
    Health Care & Social Assistance
  9. Information: Low
    Information
  10. Management of Companies & Enterprises: Low
    Management of Companies & Enterprises
  11. Manufacturing: Low
    Manufacturing
  12. Mining: Low
    Mining
  13. Other Services (except Public Administration): Low
    Other Services (except Public Administration)
  14. Professional, Scientific, & Technical Services: Low
    Professional, Scientific, & Technical Services
  15. Public Administration: Low
    Public Administration
  16. Real Estate Rental & Leasing: Low
    Real Estate Rental & Leasing
  17. Retail Trade: Low
    Retail Trade
  18. Transportation & Warehousing: Low
    Transportation & Warehousing
  19. Utilities: Low
    Utilities
  20. Wholesale Trade: Low
    Wholesale Trade

Focus on What Matters

  1. See Everything.
  2. Identify True Risk.
  3. Proactively Mitigate Threats.

Let's talk!

background