Buffer Overflow Vulnerability in Newtec Modems on Linux and ARM Architecture
CVE-2024-13503

9.5CRITICAL

Key Information:

Vendor: Newtec/idirect
Status: Ntc2218, Ntc2250, Ntc2299
Vendor: CVE Published:; 17 January 2025

Badges

👾 Exploit Exists

Summary

A buffer overflow vulnerability exists in the swdownload binary of Newtec's NTC2218, NTC2250, and NTC2299 modems, allowing attackers to execute arbitrary code. This issue arises from the parse_INFO function's use of an unrestricted sscanf, which reads incoming network packet strings into a statically sized buffer. The vulnerability can be exploited in both Linux and ARM-based systems, impacting versions from 1.0.1.1 through 2.2.6.19.

Affected Version(s)

NTC2218, NTC2250, NTC2299 Linux 1.0.1.1 <= 2.2.6.19

References

https://doi.org/10.1145/3643833.3656139

https://www.youtube.com/watch?v=-pxmly8xeas

CVSS V4

Score:

9.5

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Jan 17, 2025
Vulnerability published
Jan 17, 2025
Vulnerability Reserved
Jan 17, 2025

Credit

Johannes Willbold, [email protected]

Martin Strohmeier, [email protected]