What is CVE-2019-19494?

CVE-2019-19494 is a vulnerability in N/a. Published 2020-01-09.

Is CVE-2019-19494 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2019-19494

Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. Examples of affected products i…

EPSS: 0.691 (98.7th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

www.broadcom.com (x_refsource_MISC)
cablehaunt.com (x_refsource_MISC)
github.com/Lyrebirds/Fast8690-exploit (x_refsource_MISC)
github.com/Lyrebirds/Cable-Haunt-Report/releases/download/2.4/report.pdf (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-19494?: CVE-2019-19494 is a vulnerability in N/a. Published 2020-01-09.
Is CVE-2019-19494 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.