Lucene search
K

8 matches found

RedHat Linux
RedHat Linux
added 2024/03/25 7:35 p.m.5 views

Mozilla: JIT code failed to save return registers on Armv7-A

The Mozilla Foundation Security Advisory describes this flaw as: Return registers were overwritten which could have allowed an attacker to execute arbitrary code. Note: This issue only affected Armv7-A systems. Other operating systems are unaffected...

8.1CVSS7.6AI score0.01107EPSS
Exploits1References6
seebug.org
seebug.org
added 2018/07/30 12:0 a.m.549 views

Samsung SmartThings Hub hubCore Google Breakpad backtrace.io information disclosure vulnerability(CVE-2018-3927)

Summary An exploitable information disclosure vulnerability exists in the crash handler of the hubCore binary of the Samsung SmartThings Hub. When hubCore crashes, Google Breakpad is used to record minidumps, which are sent over an insecure HTTPS connection to the backtrace.io service, leading to...

0.4AI score0.01138EPSS
Exploits2
seebug.org
seebug.org
added 2018/07/30 12:0 a.m.563 views

Samsung SmartThings Hub video-core credentials Parsing SQL Injection Vulnerability(CVE-2018-3879)

Summary An exploitable JSON injection vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub. The video-core process incorrectly parses the user-controlled JSON payload, leading to a JSON injection which in turn leads to a SQL injection in the...

0.1AI score0.01553EPSS
Exploits2
seebug.org
seebug.org
added 2018/07/30 12:0 a.m.562 views

Samsung SmartThings Hub video-core Camera Update Code Execution Vulnerabilities(CVE-2018-3903 - CVE-2018-3904)

Summary Multiple exploitable buffer overflow vulnerabilities exist in the camera "update" feature of video-core's HTTP server of Samsung SmartThings Hub. The video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the stack. An attacker...

0.3AI score0.01804EPSS
Exploits3
Talos
Talos
added 2018/07/26 12:0 a.m.33 views

Samsung SmartThings Hub video-core Camera URL Replace Code Execution Vulnerability

Summary An exploitable buffer overflow vulnerability exists in the camera “replace” feature of video-core’s HTTP server of Samsung SmartThings Hub. The video-core process incorrectly extracts the URL field from a user-controlled JSON payload, leading to a buffer overflow on the stack. An attacker...

9.9CVSS9.7AI score0.01753EPSS
Exploits2
Talos
Talos
added 2018/07/26 12:0 a.m.36 views

Samsung SmartThings Hub video-core clips Code Execution Vulnerability

Summary Multiple exploitable buffer overflow vulnerabilities exist in the /cameras/XXXX/clips handler of video-core’s HTTP server of Samsung SmartThings Hub. The video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the stack. An...

9AI score
Exploits0
Talos
Talos
added 2018/07/26 12:0 a.m.44 views

Samsung SmartThings Hub video-core Database shard.videoHostURL Code Execution Vulnerability

Summary An exploitable stack-based buffer overflow vulnerability exists in the retrieval of a database field in video-core’s HTTP server of Samsung SmartThings Hub. The video-core process insecurely extracts the shard.videoHostURL field from its SQLite database, leading to a buffer overflow on th...

8.2CVSS8.3AI score0.0041EPSS
Exploits2
Talos
Talos
added 2018/07/26 12:0 a.m.32 views

Samsung SmartThings Hub video-core Camera Update Code Execution Vulnerabilities

Summary Multiple exploitable buffer overflow vulnerabilities exist in the camera “update” feature of video-core’s HTTP server of Samsung SmartThings Hub. The video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the stack. An attacker...

9.8AI score
Exploits0
Rows per page
Query Builder