2 matches found
CVE-2017-9392
Vera Edge 1.7.19 and Veralite 1.7.481 expose a UPnP action (request_image) on port 3480 (and port 80 via /port_3480). The res parameter in the query is unsafely copied into a stack buffer by LU::Generic_IP_Camera_Manager::GetUrlFromArguments using sprintf without length checks, enabling buffer ov...
CVE-2017-9392
An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port3480". It seems that the UPnP services provide "requestimage" as one of the service actions for ...