Lucene search

BitdefenderCVELIST:CVE-2019-17094

HistoryDec 20, 2019 - 12:00 a.m.

CVE-2019-17094 Stack-Based Overflow vulnerability in Belkin WeMo Insights Switch

2019-12-2000:00:00

CWE-121

Bitdefender

www.cve.org

8.3 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

A Stack-based Buffer Overflow vulnerability in libbelkin_api.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions.

CNA Affected

[
  {
    "product": "Belkin WeMo Insight Switch",
    "vendor": "Belkin",
    "versions": [
      {
        "status": "affected",
        "version": "2.00.11396 and prior"
      }
    ]
  }
]

References

labs.bitdefender.com/2019/12/multiple-vulnerabilities-in-belkin-wemo-insight-switch/

8.3 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVELIST:CVE-2019-17094