522 matches found
PT-2018-16303 · Samsung · Samsung Smartthings Hub
Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: An exploitable HTTP header injection issue exists in the remote servers of the Samsung SmartThings Hub. The hubCore process listens on port 39500 and relays any unauthenticated...
PT-2018-16272 · Samsung · Samsung Smartthings Hub
Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: A JSON injection issue exists in the credentials handler of the video-core's HTTP server, allowing an attacker to send HTTP requests that trigger this issue. The video-core...
PT-2018-16261 · Samsung · Samsung Smartthings Hub
Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: A stack-based buffer overflow issue exists in the samsungWifiScan callback notification of the video-core's HTTP server. The video-core process incorrectly handles answers from ...
PT-2018-16273 · Samsung · Samsung Smartthings Hub
Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17 Description: A stack-based buffer overflow issue exists in the database 'find-by-cameraId' functionality of the video-core's HTTP server. The video-core process incorrectly handle...
PT-2018-16295 · Samsung · Samsung Smartthings Hub
Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: The video-core process in the Samsung SmartThings Hub STH-ETH-250 device incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the...
PT-2018-16257 · Samsung · Samsung Smartthings Hub
Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: The issue arises from the incorrect extraction of fields from a user-controlled JSON payload by the video-core process, leading to a buffer overflow on the stack. This can be...
PT-2018-16311 · Sqlite Consortium +1 · Sqlite +1
Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: A stack-based buffer overflow issue exists in the video-core's HTTP server due to insecure extraction of database fields from the "clips" table of its SQLite database. This can ...
PT-2018-16271 · Samsung · Samsung Smartthings Hub
Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: The issue is related to multiple exploitable buffer overflow vulnerabilities in the credentials handler of the video-core's HTTP server. These vulnerabilities occur due to the...
Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-17077)
Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the camera 'update' function of the video-core HTTP server in the Samsung SmartThings Hub, which stems from the...
Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-17076)
Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the camera 'update' function of the video-core HTTP server in the Samsung SmartThings Hub, which stems from the...
Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-17075)
Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the camera 'create' function of the video-core HTTP server in the Samsung SmartThings Hub, which stems from the...
Samsung SmartThings Hub Command Injection Vulnerability
Samsung SmartThings Hub is a smart home management device from Samsung South Korea. A command injection vulnerability exists in the RTSP configuration of the smart camera in the Samsung SmartThings Hub, which stems from the program's failure to properly handle spaces in the URL field. An attacker...
Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-15900)
Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub, which originates from the...
Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-15899)
Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub, which originates from the...
Samsung SmartThings Hub SQL Injection (CVE-2018-3879)
An SQL injection vulnerability exists in Samsung SmartThings Hub. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability
Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. samsungWifiScan handler is one of the WiFi network discovery handlers. A buffer overflow vulnerability exists in the samsungWifiScan handler of the video-core HT...
Samsung SmartThings Hub hubCore Information Disclosure Vulnerability
Samsung SmartThings Hub is a smart home management device from Samsung South Korea. A security vulnerability exists in the crash handler of the hubCore binary in Samsung SmartThings Hub, which originates from a program that sends logged minidumps to the backtrace.io service over an insecure HTTPS...
Samsung SmartThings Hub Integer Overflow Vulnerability
Samsung SmartThings Hub is a smart home management device from Samsung South Korea. An integer overflow vulnerability exists in the ZigBee firmware update routine for the hubCore binary in Samsung SmartThings Hub, which stems from the hubCore process failing to properly handle malformed files in...
Samsung SmartThings Hub HTTP Response Splitting Vulnerability
Samsung SmartThings Hub is a smart home management device from Samsung South Korea. An HTTP response splitting vulnerability exists in the remote server in Samsung SmartThings Hub with firmware version 0.20.17, which stems from the program failing to properly handle JSON messages. An attacker can...
Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-14292)
Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. samsungWifiScan handler is one of the WiFi network discovery handlers. A buffer overflow vulnerability exists in the samsungWifiScan handler of the video-core HT...