Details of VAR-202601-1992

ID

VAR-202601-1992

CVE

CVE-2025-29329

TITLE

Sagemcom of F@ST 3686 Firmware Classic buffer overflow vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2026-001971

DESCRIPTION

Buffer Overflow in the ippprint (Internet Printing Protocol) service in Sagemcom F@st 3686 MAGYAR_4.121.0 allows remote attacker to execute arbitrary code by sending a crafted HTTP request. All information handled by the software may be rewritten. Furthermore, the software may stop working completely. Furthermore, attacks that exploit this vulnerability will not affect other software

Trust: 1.62

sources: NVD: CVE-2025-29329 // JVNDB: JVNDB-2026-001971

AFFECTED PRODUCTS

vendor:	sagemcom	model:	f\@st 3686	scope:	eq	version:	4.121.0	Trust: 1.0
vendor:	sagemcom	model:	f@st 3686	scope:	eq	version:	4.121.0	Trust: 0.8
vendor:	sagemcom	model:	f@st 3686	scope:	-	version:	-	Trust: 0.8
vendor:	sagemcom	model:	f@st 3686	scope:	eq	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2026-001971 // NVD: CVE-2025-29329

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2025-29329
value:	CRITICAL
Trust: 1.0
OTHER:	JVNDB-2026-001971
value:	CRITICAL
Trust: 0.8

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2025-29329
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.1
Trust: 1.0
OTHER:	JVNDB-2026-001971
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2026-001971 // NVD: CVE-2025-29329

PROBLEMTYPE DATA

problemtype:	CWE-120	Trust: 1.0
problemtype:	Classic buffer overflow (CWE-120) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2026-001971 // NVD: CVE-2025-29329

PATCH

title:

GitHub - SilverS3c/Sagemcom-fast-3686-ippprint

url:

https://github.com/SilverS3c/Sagemcom-fast-3686-ippprint

Trust: 0.8

sources: JVNDB: JVNDB-2026-001971

EXTERNAL IDS

db:	NVD	id:	CVE-2025-29329	Trust: 2.6
db:	JVNDB	id:	JVNDB-2026-001971	Trust: 0.8

sources: JVNDB: JVNDB-2026-001971 // NVD: CVE-2025-29329

REFERENCES

url:	http://sagemcom.com	Trust: 1.8
url:	https://github.com/silvers3c/sagemcom-fast-3686-ippprint	Trust: 1.0
url:	http://fst.com	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2025-29329	Trust: 0.8

sources: JVNDB: JVNDB-2026-001971 // NVD: CVE-2025-29329

SOURCES

db:	JVNDB	id:	JVNDB-2026-001971
db:	NVD	id:	CVE-2025-29329

LAST UPDATE DATE

2026-01-28T23:41:27.231000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2026-001971	date:	2026-01-27T08:41:00
db:	NVD	id:	CVE-2025-29329	date:	2026-01-22T18:46:41.067

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2026-001971	date:	2026-01-27T00:00:00
db:	NVD	id:	CVE-2025-29329	date:	2026-01-12T22:16:07.660