CVE-2018-3902
CVE-2018-3902 affects Samsung SmartThings Hub STH-ETH-250 (firmware 0.20.17) with a buffer overflow in the video-core HTTP server’s camera Replace feature. The code copies the user-controlled JSON field url using memcpy without length checks, overflowing a stack buffer and enabling potential co...