Lucene search
K

65 matches found

CNVD
CNVD
added 2018/10/09 12:0 a.m.2 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-20459)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the Samsung WifiScan handler for the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 usin...

9.9CVSS9.6AI score0.01827EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.3 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-20132)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 using...

9.9CVSS9.6AI score0.01871EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-20129)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the /cameras/XXXX/clips handler of the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250...

9.9CVSS9.5AI score0.01804EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-19870)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 with...

9.9CVSS9.6AI score0.01802EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.2 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-20131)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 using...

9.9CVSS9.6AI score0.01804EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.2 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server stack buffer overflow vulnerability (CNVD-2018-20127)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A stack buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub...

7.8CVSS7.9AI score0.00423EPSS
Exploits2References1
OSV
OSV
added 2018/09/21 3:29 p.m.3 views

CVE-2018-3915

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 64 bytes. An attacker can...

8.2CVSS6.2AI score0.00397EPSS
Exploits2References1
OSV
OSV
added 2018/09/21 3:29 p.m.4 views

CVE-2018-3914

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 2000 bytes. An attacker ca...

7.8CVSS6.2AI score0.00423EPSS
Exploits2References1
OSV
OSV
added 2018/09/21 3:29 p.m.3 views

CVE-2018-3913

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 32 bytes. An attacker can...

6.7CVSS6.2AI score0.00398EPSS
Exploits2References1
Cvelist
Cvelist
added 2018/09/21 3:0 p.m.25 views

CVE-2018-3913

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 32 bytes. An attacker can...

7.5CVSS7.4AI score0.00398EPSS
Exploits2References1
CVE
CVE
added 2018/09/21 3:0 p.m.73 views

CVE-2018-3915

The CVE-2018-3915 family affects Samsung SmartThings Hub STH-ETH-250 running firmware 0.20.17, where the video-core HTTP server uses string copy operations to retrieve shard table fields (secretKey, accessKey, sessionToken, bucket, directory, region). Each field is fetched via SELECT and copied w...

8.2CVSS8.9AI score0.00397EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2018/09/21 2:29 p.m.5 views

CVE-2018-3873

An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy overflows the destination buffer, which has a size of 128 bytes. An attacker can send an arbitrarily long...

9.9CVSS6.1AI score0.01804EPSS
Exploits2References1
OSV
OSV
added 2018/09/21 2:29 p.m.4 views

CVE-2018-3876

An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy overflows the destination buffer, which has a size of 64 bytes. An attacker can send an arbitrarily long "bucket"...

8.8CVSS6.1AI score0.01871EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2018/09/21 12:0 a.m.4 views

PT-2018-16266 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17 Description: A buffer overflow issue exists in the credentials handler of the video-core's HTTP server. The strncpy function overflows a destination buffer of 128 bytes. An attacker...

9.9CVSS9.6AI score0.01804EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/09/21 12:0 a.m.3 views

PT-2018-16269 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17 Description: A buffer overflow issue exists in the credentials handler of the video-core's HTTP server. The strncpy function overflows a destination buffer of 64 bytes. An attacker...

9.9CVSS9.3AI score0.01871EPSS
Exploits2References2
OSV
OSV
added 2018/09/20 3:29 p.m.6 views

CVE-2018-3865

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

8.8CVSS6.1AI score0.01827EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2018/09/20 12:0 a.m.3 views

PT-2018-16259 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17 Description: A buffer overflow issue exists in the Samsung WifiScan handler of the video-core's HTTP server. The strcpy function overflows a destination buffer of 40 bytes. An...

9.9CVSS9.4AI score0.01827EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/09/20 12:0 a.m.4 views

PT-2018-16258 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17 Description: A buffer overflow issue exists in the Samsung WifiScan handler of the video-core's HTTP server. The strcpy function overflows a destination buffer with a size of 40...

9.9CVSS9.4AI score0.01804EPSS
Exploits2References2
CNVD
CNVD
added 2018/09/12 12:0 a.m.4 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credential processor of the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 using...

9.9CVSS9.5AI score0.01534EPSS
Exploits2References1
NVD
NVD
added 2018/09/10 3:29 p.m.21 views

CVE-2018-3897

An exploitable buffer overflow vulnerabilities exist in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub with Firmware version 0.20.17. The video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the...

9.9CVSS9.5AI score0.01534EPSS
Exploits2References1
Rows per page
Query Builder