Lucene search
K

522 matches found

Positive Technologies
Positive Technologies
added 2018/08/23 12:0 a.m.5 views

PT-2018-16303 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: An exploitable HTTP header injection issue exists in the remote servers of the Samsung SmartThings Hub. The hubCore process listens on port 39500 and relays any unauthenticated...

8.6CVSS8.7AI score0.01223EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/08/23 12:0 a.m.5 views

PT-2018-16272 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: A JSON injection issue exists in the credentials handler of the video-core's HTTP server, allowing an attacker to send HTTP requests that trigger this issue. The video-core...

8.8CVSS8.9AI score0.01553EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/08/23 12:0 a.m.4 views

PT-2018-16261 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: A stack-based buffer overflow issue exists in the samsungWifiScan callback notification of the video-core's HTTP server. The video-core process incorrectly handles answers from ...

9.9CVSS9.6AI score0.02014EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/08/23 12:0 a.m.3 views

PT-2018-16273 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17 Description: A stack-based buffer overflow issue exists in the database 'find-by-cameraId' functionality of the video-core's HTTP server. The video-core process incorrectly handle...

9.9CVSS8.3AI score0.01242EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/08/23 12:0 a.m.10 views

PT-2018-16295 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: The video-core process in the Samsung SmartThings Hub STH-ETH-250 device incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the...

9.9CVSS9.6AI score0.01804EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2018/08/23 12:0 a.m.3 views

PT-2018-16257 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: The issue arises from the incorrect extraction of fields from a user-controlled JSON payload by the video-core process, leading to a buffer overflow on the stack. This can be...

9.9CVSS9.6AI score0.01736EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/08/23 12:0 a.m.6 views

PT-2018-16311 · Sqlite Consortium +1 · Sqlite +1

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: A stack-based buffer overflow issue exists in the video-core's HTTP server due to insecure extraction of database fields from the "clips" table of its SQLite database. This can ...

9.9CVSS7.7AI score0.00946EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2018/08/23 12:0 a.m.3 views

PT-2018-16271 · Samsung · Samsung Smartthings Hub

Name of the Vulnerable Software and Affected Versions: Samsung SmartThings Hub STH-ETH-250 version 0.20.17 Description: The issue is related to multiple exploitable buffer overflow vulnerabilities in the credentials handler of the video-core's HTTP server. These vulnerabilities occur due to the...

9.9CVSS9.8AI score0.01534EPSS
Exploits2References2
CNVD
CNVD
added 2018/08/01 12:0 a.m.2 views

Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-17077)

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the camera 'update' function of the video-core HTTP server in the Samsung SmartThings Hub, which stems from the...

9.9CVSS9.5AI score0.01804EPSS
Exploits2References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.4 views

Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-17076)

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the camera 'update' function of the video-core HTTP server in the Samsung SmartThings Hub, which stems from the...

9.9CVSS9.5AI score0.01753EPSS
Exploits2References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.2 views

Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-17075)

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the camera 'create' function of the video-core HTTP server in the Samsung SmartThings Hub, which stems from the...

9.9CVSS8.8AI score0.01489EPSS
Exploits2References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.2 views

Samsung SmartThings Hub Command Injection Vulnerability

Samsung SmartThings Hub is a smart home management device from Samsung South Korea. A command injection vulnerability exists in the RTSP configuration of the smart camera in the Samsung SmartThings Hub, which stems from the program's failure to properly handle spaces in the URL field. An attacker...

9.9CVSS9.5AI score0.03444EPSS
Exploits2References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.1 views

Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-15900)

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub, which originates from the...

9.9CVSS9.5AI score0.01804EPSS
Exploits2References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.1 views

Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-15899)

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the credentials handler of the video-core HTTP server in the Samsung SmartThings Hub, which originates from the...

9.9CVSS9.5AI score0.01534EPSS
Exploits2References1
Check Point Advisories
Check Point Advisories
added 2018/08/01 12:0 a.m.2 views

Samsung SmartThings Hub SQL Injection (CVE-2018-3879)

An SQL injection vulnerability exists in Samsung SmartThings Hub. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

6.5CVSS4.4AI score0.01553EPSS
Exploits2
CNVD
CNVD
added 2018/07/31 12:0 a.m.2 views

Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. samsungWifiScan handler is one of the WiFi network discovery handlers. A buffer overflow vulnerability exists in the samsungWifiScan handler of the video-core HT...

9.9CVSS9.5AI score0.01534EPSS
Exploits2References1
CNVD
CNVD
added 2018/07/31 12:0 a.m.1 views

Samsung SmartThings Hub hubCore Information Disclosure Vulnerability

Samsung SmartThings Hub is a smart home management device from Samsung South Korea. A security vulnerability exists in the crash handler of the hubCore binary in Samsung SmartThings Hub, which originates from a program that sends logged minidumps to the backtrace.io service over an insecure HTTPS...

6.8CVSS6.2AI score0.01138EPSS
Exploits2References1
CNVD
CNVD
added 2018/07/31 12:0 a.m.1 views

Samsung SmartThings Hub Integer Overflow Vulnerability

Samsung SmartThings Hub is a smart home management device from Samsung South Korea. An integer overflow vulnerability exists in the ZigBee firmware update routine for the hubCore binary in Samsung SmartThings Hub, which stems from the hubCore process failing to properly handle malformed files in...

5.5CVSS5.5AI score0.00421EPSS
Exploits2References1
CNVD
CNVD
added 2018/07/31 12:0 a.m.1 views

Samsung SmartThings Hub HTTP Response Splitting Vulnerability

Samsung SmartThings Hub is a smart home management device from Samsung South Korea. An HTTP response splitting vulnerability exists in the remote server in Samsung SmartThings Hub with firmware version 0.20.17, which stems from the program failing to properly handle JSON messages. An attacker can...

8.6CVSS8.6AI score0.01223EPSS
Exploits2References1
CNVD
CNVD
added 2018/07/31 12:0 a.m.2 views

Samsung SmartThings Hub video-core HTTP server buffer overflow vulnerability (CNVD-2018-14292)

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. samsungWifiScan handler is one of the WiFi network discovery handlers. A buffer overflow vulnerability exists in the samsungWifiScan handler of the video-core HT...

9.9CVSS9.5AI score0.01736EPSS
Exploits2References1
Rows per page
Query Builder