Lucene search
K

522 matches found

Positive Technologies
Positive Technologies
added 2018/09/21 12:0 a.m.4 views

PT-2018-16270 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17 Description: A buffer overflow issue exists in the credentials handler of the video-core's HTTP server. The strncpy function overflows the destination buffer, which has a size of 16...

9.9CVSS9.6AI score0.01804EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/09/21 12:0 a.m.6 views

PT-2018-16298 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub affected versions not specified Description: A stack-based buffer overflow issue exists in the video-core's HTTP server of the Samsung SmartThings Hub. This occurs due to insecure extraction of the shard.videoHostURL...

8.2CVSS7.6AI score0.0041EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/09/21 12:0 a.m.4 views

PT-2018-16266 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17 Description: A buffer overflow issue exists in the credentials handler of the video-core's HTTP server. The strncpy function overflows a destination buffer of 128 bytes. An attacker...

9.9CVSS9.6AI score0.01804EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/09/21 12:0 a.m.3 views

PT-2018-16269 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17 Description: A buffer overflow issue exists in the credentials handler of the video-core's HTTP server. The strncpy function overflows a destination buffer of 64 bytes. An attacker...

9.9CVSS9.3AI score0.01871EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/09/21 12:0 a.m.3 views

PT-2018-16287 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17 Description: A buffer overflow issue exists in the /cameras/XXXX/clips handler of the video-core's HTTP server. The strncpy call overflows a destination buffer of 52 bytes. An...

9.9CVSS9.4AI score0.01804EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2018/09/21 12:0 a.m.4 views

PT-2018-16306 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: A stack-based buffer overflow issue exists in the video-core HTTP server due to the retrieval of database fields. The strcpy call overflows a destination buffer of 2000 bytes. A...

7.8CVSS7.6AI score0.00423EPSS
Exploits2References3
OSV
OSV
added 2018/09/20 3:29 p.m.5 views

CVE-2018-3865

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

8.8CVSS6.1AI score0.01827EPSS
Exploits2References1
NVD
NVD
added 2018/09/20 3:29 p.m.22 views

CVE-2018-3865

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

9.9CVSS9.2AI score0.01827EPSS
Exploits2References1
NVD
NVD
added 2018/09/20 3:29 p.m.20 views

CVE-2018-3864

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

9.9CVSS9.2AI score0.01804EPSS
Exploits2References1
OSV
OSV
added 2018/09/20 3:29 p.m.3 views

CVE-2018-3864

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

8.8CVSS6.1AI score0.01804EPSS
Exploits2References1
Prion
Prion
added 2018/09/20 3:29 p.m.16 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

9CVSS9.1AI score0.01804EPSS
Exploits2References1Affected Software1
Prion
Prion
added 2018/09/20 3:29 p.m.21 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

9CVSS9.1AI score0.01827EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2018/09/20 3:0 p.m.52 views

CVE-2018-3864

CVE-2018-3864 affects Samsung SmartThings Hub STH-ETH-250 (firmware 0.20.17). The vulnerability is a buffer overflow in the video-core HTTP server’s WifiScan handler. The implementation copies JSON-derived strings into 40-byte buffers using strcpy without respecting actual length, enabling potent...

9.9CVSS9.1AI score0.01804EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2018/09/20 3:0 p.m.23 views

CVE-2018-3864

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

9.9CVSS9.2AI score0.01804EPSS
Exploits2References1
CVE
CVE
added 2018/09/20 3:0 p.m.55 views

CVE-2018-3865

The CVE-2018-3865 issue affects Samsung SmartThings Hub STH-ETH-250 (video-core HTTP server, wifiScan path). The vulnerable component is the wifiScan handler in video-core, where a 40-byte buffer overflow occurs due to unsafely copying the JSON value of cameraIp using strcpy, after json-c parsing...

9.9CVSS9.1AI score0.01827EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2018/09/20 3:0 p.m.22 views

CVE-2018-3865

An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy overflows the destination buffer, which has a size of 40 bytes. An attacker can send an arbitrarily long...

9.9CVSS9.2AI score0.01827EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2018/09/20 12:0 a.m.3 views

PT-2018-16259 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17 Description: A buffer overflow issue exists in the Samsung WifiScan handler of the video-core's HTTP server. The strcpy function overflows a destination buffer of 40 bytes. An...

9.9CVSS9.4AI score0.01827EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/09/20 12:0 a.m.4 views

PT-2018-16258 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17 Description: A buffer overflow issue exists in the Samsung WifiScan handler of the video-core's HTTP server. The strcpy function overflows a destination buffer with a size of 40...

9.9CVSS9.4AI score0.01804EPSS
Exploits2References2
CNVD
CNVD
added 2018/09/12 12:0 a.m.2 views

Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-20130)

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the /cameras/XXXX/clips processor of the video-core HTTP server in the Samsung SmartThings Hub using version 0.20.17,...

9.9CVSS9.4AI score0.01534EPSS
Exploits2References1
CNVD
CNVD
added 2018/09/12 12:0 a.m.3 views

Samsung SmartThings Hub STH-ETH-250 video-core HTTP server buffer overflow vulnerability

Samsung SmartThings Hub STH-ETH-250 is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credential processor of the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 using...

9.9CVSS9.5AI score0.01534EPSS
Exploits2References1
Rows per page
Query Builder