3 matches found
CVE-2019-5039
CVE-2019-5039 describes an exploitable heap-based buffer overflow in the Openweave-core ASN1Writer PutValue path (Nest Nest Cam IQ Indoor, Openweave-core 4.0.2). TALOS details show an overflow in ASN1Writer::EncodeHead/PutValue when processing crafted Weave certificates, enabling code execution. ...
CVE-2019-5038
Nest Labs Openweave-core 4.0.2 is affected by CVE-2019-5038 in the print-tlv command. Cisco Talos describes a stack-based buffer overflow caused by a depth-unbounded TLV dump in the weave print-tlv flow, where DumpHandler copies up to 0x14 tabs into a 48-byte buffer, allowing overflow and potenti...
CVE-2019-5040
CVE-2019-5040 is a confirmed vulnerability in Openweave-core 4.0.2 and Nest Cam IQ Indoor 4620002: the Weave MessageLayer DecodeMessageWithLength can mis-handle message length, enabling an integer overflow that leads to PacketBuffer data reuse and potential information disclosure. The TALOS advis...