Lucene search
K

4 matches found

OSV
OSV
added 2018/09/10 3:29 p.m.4 views

CVE-2018-3897

An exploitable buffer overflow vulnerabilities exist in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub with Firmware version 0.20.17. The video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the...

8.8CVSS6.1AI score0.01534EPSS
Exploits2References1
NVD
NVD
added 2018/09/10 3:29 p.m.21 views

CVE-2018-3897

An exploitable buffer overflow vulnerabilities exist in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub with Firmware version 0.20.17. The video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the...

9.9CVSS9.5AI score0.01534EPSS
Exploits2References1
Cvelist
Cvelist
added 2018/09/10 3:0 p.m.21 views

CVE-2018-3897

An exploitable buffer overflow vulnerabilities exist in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub with Firmware version 0.20.17. The video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the...

9.9CVSS9.1AI score0.01534EPSS
Exploits2References1
CVE
CVE
added 2018/09/10 3:0 p.m.70 views

CVE-2018-3897

CVE-2018-3897 affects Samsung SmartThings Hub (STH-ETH-250) firmware 0.20.17. The vulnerability is a stack-buffer overflow in video-core’s HTTP server: a user-controlled JSON parameter (callbackUrl) is copied with strncpy into a 52-byte buffer, enabling potential code execution. Multiple connecte...

9.9CVSS9AI score0.01534EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder