2 matches found
CVE-2018-3903
On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the stack. An attacker can send an HTTP request to trigger this vulnerability. The memcpy call...
CVE-2018-3903
Samsung SmartThings Hub STH-ETH-250 (firmware 0.20.17) is affected by video-core HTTP server buffer overflows (CVE-2018-3903/3904). The vulnerability stems from copying user-controlled JSON fields (url or state) into a 512-byte stack buffer using memcpy, with the length derived from the source st...