CVE-2019-5037
CVE-2019-5037 affects Nest Cam IQ Indoor (4620002) WeaveCASEEngine::DecodeCertificateInfo. The issue is an integer overflow in the Weave certificate processing that allows an attacker to set CertInfoLength to 0xFFFF, causing the TLVReader to advance beyond the packet into unmapped memory and cras...