112 matches found
CVE-2023-33768
Incorrect signature verification of the firmware during the Device Firmware Update process of Belkin Wemo Smart Plug WSP080 v1.2 allows attackers to cause a Denial of Service DoS via a crafted firmware file...
Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs
The second generation version of Belkin's Wemo Mini Smart Plug has been found to contain a buffer overflow vulnerability that could be weaponized by a threat actor to inject arbitrary commands remotely. The issue, assigned the identifier CVE-2023-27217 , was discovered and reported to Belkin on...
Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs
The second generation version of Belkin's Wemo Mini Smart Plug has been found to contain a buffer overflow vulnerability that could be weaponized by a threat actor to inject arbitrary commands remotely. The issue, assigned the identifier CVE-2023-27217, was discovered and reported to Belkin on...
PT-2023-2988 · Belkin · Wemo Mini Smart Plug V2 +1
Name of the Vulnerable Software and Affected Versions: Belkin Smart Outlet V2 F7c063 firmware 2.00.11420.OWRT.PVT SNSV2 Wemo Mini Smart Plug V2 F7C063 Description: A stack-based buffer overflow in the ChangeFriendlyName function allows attackers to cause a Denial of Service DoS via a crafted UPNP...
Belkin Wemo UPnP API OS Command Injection (CVE-2019-12780)
A command injection vulnerability exists in Belkin Wemo. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2021-21266 XXE vulnerability in OpenHAB
openHAB is a vendor and technology agnostic open source automation software for your home. In openHAB before versions 2.5.12 and 3.0.1 the XML external entity XXE attack allows attackers in the same network as the openHAB instance to retrieve internal information like the content of files from th...
‘Insight’ into Home Automation Reveals Vulnerability in Simple IoT Product
ARCHIVED STORY ‘Insight’ into Home Automation Reveals Vulnerability in Simple IoT Product By Douglas McKee · August 18, 2020 Eoin Carroll, Charles McFarland, Kevin McGrath, and Mark Bereza contributed to this report. The Internet of Things promises to make our lives easier. Want to remotely turn...
CVE-2013-2748
Belkin Wemo Switch before WeMoUS2.00.2176.PVT could allow remote attackers to upload arbitrary files onto the system...
Information disclosure
Belkin Wemo Switch before WeMoUS2.00.2176.PVT could allow remote attackers to upload arbitrary files onto the system...
CVE-2013-2748
Belkin Wemo Switch before WeMoUS2.00.2176.PVT could allow remote attackers to upload arbitrary files onto the system...
CVE-2013-2748
Summary: CVE-2013-2748 affects Belkin Wemo Switch firmware prior to WeMo_US_2.00.2176.PVT (and WW version) and allows remote attackers to upload arbitrary files onto the system via firmwareupdate handling. The vulnerability is demonstrated by publicly available PoCs/exploits showing an UpdateFirm...
CVE-2019-17094
A Stack-based Buffer Overflow vulnerability in libbelkinapi.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions...
CVE-2019-17094
A Stack-based Buffer Overflow vulnerability in libbelkinapi.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions...
Stack overflow
A Stack-based Buffer Overflow vulnerability in libbelkinapi.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions...
CVE-2019-17094
The CVE-2019-17094 entry documents a Stack-based buffer overflow in the Belkin WeMo Insight Switch firmware, specifically in the libbelkin_api.so component. Affected: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior. Root cause: a stack overflow allows a local attacker to achieve ...
CVE-2019-17094 Stack-Based Overflow vulnerability in Belkin WeMo Insights Switch
A Stack-based Buffer Overflow vulnerability in libbelkinapi.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions...
Belkin Wemo UPnP Remote Code Execution
A remote code execution vulnerability is exists in Belkin Wemo UPnP. A remote attacker can exploit this issue by sending a specially crafted packet to the target server. Successful exploitation could result in execution of arbitrary code on the affected system...
Belkin Wemo Switch 28B Input Validation Error Vulnerability
The Belkin Wemo Switch 28B is a smart outlet device from Belkin USA. A security vulnerability exists in the Belkin Wemo Switch 28B WW2.00.11057.PVT-OWRT-SNS version. A remote attacker can exploit this vulnerability to cause a denial of service by sending a StoreRules request with a specially...
CVE-2019-17532
An issue was discovered on Belkin Wemo Switch 28B WW2.00.11057.PVT-OWRT-SNS devices. They allow remote attackers to cause a denial of service persistent rules-processing outage via a crafted ruleDbBody element in a StoreRules request to the upnp/control/rules1 URI, because database corruption...
CVE-2019-17532
An issue was discovered on Belkin Wemo Switch 28B WW2.00.11057.PVT-OWRT-SNS devices. They allow remote attackers to cause a denial of service persistent rules-processing outage via a crafted ruleDbBody element in a StoreRules request to the upnp/control/rules1 URI, because database corruption...