Lucene search
K

522 matches found

Prion
Prion
added 2021/04/09 6:15 p.m.19 views

Improper access control

Improper access control of certain port in SmartThings prior to version 1.7.63.6 allows remote temporary denial of service...

5CVSS5.4AI score0.00967EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/04/09 5:39 p.m.59 views

CVE-2021-25378

CVE-2021-25378 affects Samsung SmartThings Hub (notably STH-ETH-250) with improper access control on certain ports, enabling remote temporary denial of service. The vulnerability is associated with SmartThings versions prior to 1.7.63.6. Root cause: improper access control of ports. Impact per so...

5.3CVSS5.4AI score0.00967EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/04/09 5:39 p.m.18 views

CVE-2021-25378

Improper access control of certain port in SmartThings prior to version 1.7.63.6 allows remote temporary denial of service...

4.3CVSS5.7AI score0.00967EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/09 12:0 a.m.4 views

SmartThings Hub STH-ETH-250 安全漏洞

SAMSUNG SmartThings Hub STH-ETH-250 is a smart home management device from Samsung South Korea. A security vulnerability exists in SmartThings versions prior to 1.7.63.6, which stems from improper access control to certain ports, resulting in a remote temporary denial of service...

5.3CVSS5.8AI score0.00967EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/04/09 12:0 a.m.5 views

PT-2021-16569 · Samsung · Smartthings

Name of the Vulnerable Software and Affected Versions: SmartThings versions prior to 1.7.63.6 Description: The issue is related to improper access control of certain ports, which allows for remote temporary denial of service. Recommendations: For versions prior to 1.7.63.6, update to version...

5.3CVSS5.3AI score0.00967EPSS
Exploits0References3
CNVD
CNVD
added 2018/10/09 12:0 a.m.2 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-20459)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the Samsung WifiScan handler for the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 usin...

9.9CVSS9.6AI score0.01827EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server stack buffer overflow vulnerability

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A stack buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub...

8.2CVSS8.1AI score0.00397EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server stack buffer overflow vulnerability (CNVD-2018-20128)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A stack buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub...

7.5CVSS7.3AI score0.00398EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-20129)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the /cameras/XXXX/clips handler of the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250...

9.9CVSS9.5AI score0.01804EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server stack buffer overflow vulnerability (CNVD-2018-20127)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A stack buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub...

7.8CVSS7.9AI score0.00423EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-20132)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 using...

9.9CVSS9.6AI score0.01871EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-19870)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 with...

9.9CVSS9.6AI score0.01802EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/26 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-20131)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 using...

9.9CVSS9.6AI score0.01804EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/25 12:0 a.m.1 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability (CNVD-2018-19739)

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the Samsung WifiScan handler for the video-core HTTP server in the Samsung SmartThings Hub STH-ETH-250 with...

9.9CVSS9.6AI score0.01804EPSS
Exploits2References1
NVD
NVD
added 2018/09/21 3:29 p.m.20 views

CVE-2018-3915

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 64 bytes. An attacker can...

8.2CVSS7.8AI score0.00397EPSS
Exploits2References1
NVD
NVD
added 2018/09/21 3:29 p.m.21 views

CVE-2018-3914

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 2000 bytes. An attacker ca...

7.8CVSS7.6AI score0.00423EPSS
Exploits2References1
OSV
OSV
added 2018/09/21 3:29 p.m.3 views

CVE-2018-3915

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 64 bytes. An attacker can...

8.2CVSS6.2AI score0.00397EPSS
Exploits2References1
OSV
OSV
added 2018/09/21 3:29 p.m.4 views

CVE-2018-3914

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 2000 bytes. An attacker ca...

7.8CVSS6.2AI score0.00423EPSS
Exploits2References1
OSV
OSV
added 2018/09/21 3:29 p.m.1 views

CVE-2018-3894

An exploitable buffer overflow vulnerability exists in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy call overflows the destination buffer, which has a size of 52 bytes. An attacker can send an arbitrarily...

8.8CVSS6.1AI score0.01804EPSS
Exploits2References1
Prion
Prion
added 2018/09/21 3:29 p.m.19 views

Stack overflow

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 32 bytes. An attacker can...

7.2CVSS7.3AI score0.00398EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder