Hub Firmware Security Vulnerabilities and Issues — Hub Firmware CVE List

Lucene search

InsteonHub Firmware

9 matches found

CVE•added 2018/08/23 6:29 p.m.•54 views

CVE-2017-14452

An exploitable buffer overflow vulnerability exists in the PubNub message handler for the "control" channel of Insteon Hub running firmware version 1012. Specially crafted replies received from the PubNub service can cause buffer overflows on a global section overwriting arbitrary data. A strcpy ov...

8.8CVSS8.7AI score0.00383EPSS

CVE•added 2018/08/06 5:29 p.m.•53 views

CVE-2017-14447

An exploitable buffer overflow vulnerability exists in the PubNub message handler for the 'ad' channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send...

8.5CVSS7.7AI score0.00575EPSS

CVE•added 2019/03/21 5:29 p.m.•53 views

CVE-2017-16253

An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012 for the cc channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwrit...

8.5CVSS8.9AI score0.01129EPSS

CVE•added 2019/03/21 5:29 p.m.•51 views

CVE-2017-16255

An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can send an authenticated HTTP r...

8.5CVSS8.8AI score0.00922EPSS

CVE•added 2018/08/06 9:29 p.m.•49 views

CVE-2017-16252

Specially crafted commands sent through the PubNub service in Insteon Hub 2245-222 with firmware version 1012 can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authenticated HTTP request to trigger this vulnerability.At 0x9d014cc0 the value for the cmd k...

8.5CVSS8.9AI score0.00655EPSS

CVE•added 2019/03/21 5:29 p.m.•48 views

CVE-2017-16254

8.5CVSS8.9AI score0.00922EPSS

CVE•added 2023/01/12 12:15 a.m.•46 views

CVE-2017-14454

Multiple exploitable buffer overflow vulnerabilities exists in the PubNub message handler for the "control" channel of Insteon Hub running firmware version 1012. Specially crafted replies received from the PubNub service can cause buffer overflows on a global section overwriting arbitrary data. An ...

8.5CVSS8.6AI score0.00093EPSS

CVE•added 2023/01/11 10:15 p.m.•38 views

CVE-2017-16261

Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker shou...

8.8CVSS9AI score0.00084EPSS

CVE•added 2018/08/02 7:29 p.m.•37 views

CVE-2018-3834

An exploitable permanent denial of service vulnerability exists in Insteon Hub running firmware version 1013. The firmware upgrade functionality, triggered via PubNub, retrieves signed firmware binaries using plain HTTP requests. The device doesn't check the kind of firmware image that is going to ...

8.7CVSS7.3AI score0.00217EPSS