CVE-2022-30114 in FASTGate MediaAccess FGA2130FWB
Summary
by MITRE • 05/19/2023
A heap-based buffer overflow in a network service in Fastweb FASTGate MediaAccess FGA2130FWB, firmware version 18.3.n.0482_FW_230_FGA2130, and DGA4131FWB, firmware version up to 18.3.n.0462_FW_261_DGA4131, allows a remote attacker to reboot the device through a crafted HTTP request, causing DoS.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
Analysis
by VulDB Data Team • 05/29/2026
This vulnerability exists within the network service component of Fastweb FASTGate MediaAccess devices including the FGA2130FWB and DGA4131FWB models. The flaw manifests as a heap-based buffer overflow that occurs when processing HTTP requests, representing a critical security weakness that can be exploited remotely by attackers without authentication. The vulnerability is particularly concerning because it allows for remote denial of service through device rebooting, effectively disrupting network connectivity for legitimate users.
The technical implementation of this vulnerability involves improper input validation within the HTTP request handling mechanism of the affected firmware versions. When a maliciously crafted HTTP request is sent to the device, the network service fails to properly bounds-check data being copied into heap-allocated buffers, resulting in memory corruption that triggers the device to restart automatically. This heap-based overflow specifically targets memory allocation patterns within the web server component that processes incoming HTTP traffic, making it a classic example of unsafe memory handling practices.
The operational impact of this vulnerability extends beyond simple service disruption to potentially enable broader attack vectors. While the immediate effect is device rebooting and denial of service, the underlying memory corruption could theoretically be exploited to execute arbitrary code or escalate privileges. The vulnerability affects multiple firmware versions, with specific affected ranges including FGA2130FWB firmware version 18.3.n.0482_FW_230_FGA2130 and DGA4131FWB firmware versions up to 18.3.n.0462_FW_261_DGA4131, indicating this is likely a persistent flaw across the product line. The remote exploitation capability means attackers can target these devices from outside the local network, making them particularly vulnerable to widespread exploitation.
Organizations should implement immediate mitigation strategies including firmware updates from the vendor, network segmentation to limit access to these devices, and monitoring for suspicious HTTP traffic patterns. The vulnerability aligns with CWE-121 heap-based buffer overflow classification and represents a significant concern under ATT&CK framework category T1499.004 for network denial of service attacks. Network administrators should consider implementing access controls to restrict HTTP access to these devices and deploy intrusion detection systems to monitor for exploitation attempts. The vulnerability highlights the critical importance of proper memory management in embedded network devices and underscores the need for regular security assessments of firmware components in network infrastructure equipment.