CVE-2020-24034

Name: CVE-2020-24034
Creator: NVD / NIST
Published: 2020-09-01T18:15:13.587+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.8/10EPSS 3.67%

Last modified Jun 17, 2026

CVE-2020-24034 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sess_id, nonce, and ha1 values inside of the serialized session cookie, an attacker may alter the user value inside of this cookie, and assume the role and permissions of the user specified. EPSS estimates a 3.67% chance of exploitation in the next 30 days.

Description

Sagemcom F@ST 5280 routers using firmware version 1.150.61 have insecure deserialization that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sess_id, nonce, and ha1 values inside of the serialized session cookie, an attacker may alter the user value inside of this cookie, and assume the role and permissions of the user specified. By assuming the role of the user internal, which is inaccessible to end users by default, the attacker gains the permissions of the internal account, which includes the ability to flash custom firmware to the router, allowing the attacker to achieve a complete compromise.

Metrics

CVSS 3.1

8.8/10

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

3.67%

88.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-502

Affected Software

Vendor	Product	Versions
Sagemcom	F\@St 5280 Router Firmware	1.150.61

References

http://packetstormsecurity.com/files/159026/Sagemcom-F-ST-5280-Privilege-Escalation.htmlExploit, Third Party Advisory, VDB Entry
http://seclists.org/fulldisclosure/2020/Sep/3Mailing List, Third Party Advisory
https://seclists.org/fulldisclosure/2020/Sep/3Mailing List, Third Party Advisory
https://support.sagemcom.com/fr/haut-debitVendor Advisory
http://packetstormsecurity.com/files/159026/Sagemcom-F-ST-5280-Privilege-Escalation.htmlExploit, Third Party Advisory, VDB Entry
http://seclists.org/fulldisclosure/2020/Sep/3Mailing List, Third Party Advisory
https://seclists.org/fulldisclosure/2020/Sep/3Mailing List, Third Party Advisory
https://support.sagemcom.com/fr/haut-debitVendor Advisory

Timeline

Published: Sep 1, 2020
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2020-24034?

How severe is CVE-2020-24034?

CVE-2020-24034 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 3.67% probability of exploitation in the next 30 days.

How do I fix CVE-2020-24034?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-24034?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST