Back to search
CVE-2024-6199
Published: Apr 25, 2025
Modified: Apr 25, 2025
PUBLISHED
Description
An unauthenticated attacker on the WAN interface, with the ability to intercept Dynamic DNS (DDNS) traffic between DDNS services and the modem, could manipulate specific responses to include code that forces a buffer overflow on the modem. Customers that have not enabled Dynamic DNS on their modem are not vulnerable.
| Vendor | Product | Versions |
|---|---|---|
ViaSat | RM5110 | affected 0 - <= 4.3.0.2 |
ViaSat | RM5111 | affected 0 - <= 4.3.0.2 |
Viasat | RG1100 | affected 0 - <= 4.3.0.2 |
Viasat | EG1000 | affected 0 - <= 4.3.0.2 |
Viasat | EG1020 | affected 0 - <= 4.3.0.2 |
Weaknesses (CWE)
References
https://www.onekey.com/resource/security-advisory-rce-on-viasat-modems-cve-2024-6199
third-party-advisory
technical-description
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now