Lucene search
K

112 matches found

Vulnrichment
Vulnrichment
added 2023/07/13 12:0 a.m.12 views

CVE-2023-33768

Incorrect signature verification of the firmware during the Device Firmware Update process of Belkin Wemo Smart Plug WSP080 v1.2 allows attackers to cause a Denial of Service DoS via a crafted firmware file...

6.7AI score0.00904EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2023/05/17 10:17 a.m.4 views

Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs

The second generation version of Belkin's Wemo Mini Smart Plug has been found to contain a buffer overflow vulnerability that could be weaponized by a threat actor to inject arbitrary commands remotely. The issue, assigned the identifier CVE-2023-27217 , was discovered and reported to Belkin on...

9.8CVSS7.7AI score0.0099EPSS
Exploits1
The Hacker News
The Hacker News
added 2023/05/17 10:17 a.m.46 views

Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs

The second generation version of Belkin's Wemo Mini Smart Plug has been found to contain a buffer overflow vulnerability that could be weaponized by a threat actor to inject arbitrary commands remotely. The issue, assigned the identifier CVE-2023-27217, was discovered and reported to Belkin on...

7.8AI score0.0099EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2023/02/27 12:0 a.m.4 views

PT-2023-2988 · Belkin · Wemo Mini Smart Plug V2 +1

Name of the Vulnerable Software and Affected Versions: Belkin Smart Outlet V2 F7c063 firmware 2.00.11420.OWRT.PVT SNSV2 Wemo Mini Smart Plug V2 F7C063 Description: A stack-based buffer overflow in the ChangeFriendlyName function allows attackers to cause a Denial of Service DoS via a crafted UPNP...

10CVSS7.7AI score0.0099EPSS
Exploits1References8
Check Point Advisories
Check Point Advisories
added 2022/11/28 12:0 a.m.40 views

Belkin Wemo UPnP API OS Command Injection (CVE-2019-12780)

A command injection vulnerability exists in Belkin Wemo. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

7.5CVSS5.4AI score0.71992EPSS
Exploits1
Cvelist
Cvelist
added 2021/02/01 2:40 p.m.28 views

CVE-2021-21266 XXE vulnerability in OpenHAB

openHAB is a vendor and technology agnostic open source automation software for your home. In openHAB before versions 2.5.12 and 3.0.1 the XML external entity XXE attack allows attackers in the same network as the openHAB instance to retrieve internal information like the content of files from th...

6.4CVSS6.8AI score0.011EPSS
Exploits0References4
Trellix
Trellix
added 2020/08/18 12:0 a.m.9 views

‘Insight’ into Home Automation Reveals Vulnerability in Simple IoT Product

ARCHIVED STORY ‘Insight’ into Home Automation Reveals Vulnerability in Simple IoT Product By Douglas McKee · August 18, 2020 Eoin Carroll, Charles McFarland, Kevin McGrath, and Mark Bereza contributed to this report. The Internet of Things promises to make our lives easier. Want to remotely turn...

10CVSS9.6AI score0.03701EPSS
Exploits0
NVD
NVD
added 2020/01/28 8:15 p.m.19 views

CVE-2013-2748

Belkin Wemo Switch before WeMoUS2.00.2176.PVT could allow remote attackers to upload arbitrary files onto the system...

9.8CVSS9.5AI score0.1307EPSS
Exploits6References3
Prion
Prion
added 2020/01/28 8:15 p.m.13 views

Information disclosure

Belkin Wemo Switch before WeMoUS2.00.2176.PVT could allow remote attackers to upload arbitrary files onto the system...

7.5CVSS7.3AI score0.1307EPSS
Exploits6References3Affected Software1
Cvelist
Cvelist
added 2020/01/28 7:49 p.m.24 views

CVE-2013-2748

Belkin Wemo Switch before WeMoUS2.00.2176.PVT could allow remote attackers to upload arbitrary files onto the system...

9.6AI score0.1307EPSS
Exploits6References3
CVE
CVE
added 2020/01/28 7:49 p.m.65 views

CVE-2013-2748

Summary: CVE-2013-2748 affects Belkin Wemo Switch firmware prior to WeMo_US_2.00.2176.PVT (and WW version) and allows remote attackers to upload arbitrary files onto the system via firmwareupdate handling. The vulnerability is demonstrated by publicly available PoCs/exploits showing an UpdateFirm...

9.8CVSS9.4AI score0.1307EPSS
Exploits6References3Affected Software1
OSV
OSV
added 2020/01/27 6:15 p.m.3 views

CVE-2019-17094

A Stack-based Buffer Overflow vulnerability in libbelkinapi.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions...

7.8CVSS7.5AI score0.00508EPSS
Exploits0References1
NVD
NVD
added 2020/01/27 6:15 p.m.17 views

CVE-2019-17094

A Stack-based Buffer Overflow vulnerability in libbelkinapi.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions...

8.3CVSS8.3AI score0.00508EPSS
Exploits0References1
Prion
Prion
added 2020/01/27 6:15 p.m.15 views

Stack overflow

A Stack-based Buffer Overflow vulnerability in libbelkinapi.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions...

7.2CVSS7.6AI score0.00508EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/01/27 5:14 p.m.49 views

CVE-2019-17094

The CVE-2019-17094 entry documents a Stack-based buffer overflow in the Belkin WeMo Insight Switch firmware, specifically in the libbelkin_api.so component. Affected: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior. Root cause: a stack overflow allows a local attacker to achieve ...

8.3CVSS7.9AI score0.00508EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/27 5:14 p.m.21 views

CVE-2019-17094 Stack-Based Overflow vulnerability in Belkin WeMo Insights Switch

A Stack-based Buffer Overflow vulnerability in libbelkinapi.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions...

8.3CVSS8.2AI score0.00508EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2020/01/08 12:0 a.m.1 views

Belkin Wemo UPnP Remote Code Execution

A remote code execution vulnerability is exists in Belkin Wemo UPnP. A remote attacker can exploit this issue by sending a specially crafted packet to the target server. Successful exploitation could result in execution of arbitrary code on the affected system...

5AI score
Exploits0
CNVD
CNVD
added 2019/10/15 12:0 a.m.6 views

Belkin Wemo Switch 28B Input Validation Error Vulnerability

The Belkin Wemo Switch 28B is a smart outlet device from Belkin USA. A security vulnerability exists in the Belkin Wemo Switch 28B WW2.00.11057.PVT-OWRT-SNS version. A remote attacker can exploit this vulnerability to cause a denial of service by sending a StoreRules request with a specially...

7.8CVSS6.8AI score0.01617EPSS
Exploits1References1
OSV
OSV
added 2019/10/12 9:15 p.m.4 views

CVE-2019-17532

An issue was discovered on Belkin Wemo Switch 28B WW2.00.11057.PVT-OWRT-SNS devices. They allow remote attackers to cause a denial of service persistent rules-processing outage via a crafted ruleDbBody element in a StoreRules request to the upnp/control/rules1 URI, because database corruption...

7.5CVSS7.2AI score0.01617EPSS
Exploits1References1
NVD
NVD
added 2019/10/12 9:15 p.m.17 views

CVE-2019-17532

An issue was discovered on Belkin Wemo Switch 28B WW2.00.11057.PVT-OWRT-SNS devices. They allow remote attackers to cause a denial of service persistent rules-processing outage via a crafted ruleDbBody element in a StoreRules request to the upnp/control/rules1 URI, because database corruption...

7.8CVSS7.5AI score0.01617EPSS
Exploits1References1
Rows per page
Query Builder