Samsung

Sth-eth-250 Firmware

40 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.9

CVE-2018-3925

Exploit
  • EPSS 0.42%
  • Veröffentlicht 23.08.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:06:18

An exploitable buffer overflow vulnerability exists in the remote video-host communication of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17. The video-core process insecurely parses the AWSELB c...

9.9

CVE-2018-3919

Exploit
  • EPSS 0.3%
  • Veröffentlicht 23.08.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:06:18

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17. The video-core process insecurely extracts t...

9.9

CVE-2018-3917

Exploit
  • EPSS 0.33%
  • Veröffentlicht 23.08.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:06:17

On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process insecurely extracts the fields from the "shard" table of its SQLite database, leading to a buffer overflow on the stack. An attacker can send an HTTP...

9.9

CVE-2018-3905

Exploit
  • EPSS 0.38%
  • Veröffentlicht 23.08.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:06:16

An exploitable buffer overflow vulnerability exists in the camera "create" feature of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17. The video-core process incorrectly extracts the "state" field...

9.9

CVE-2018-3903

Exploit
  • EPSS 0.39%
  • Veröffentlicht 23.08.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:06:16

On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the stack. An attacker can send an HTTP request to t...

9.9

CVE-2018-3902

Exploit
  • EPSS 0.38%
  • Veröffentlicht 23.08.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:06:16

An exploitable buffer overflow vulnerability exists in the camera "replace" feature of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17. The video-core process incorrectly extracts the URL field fr...

9.9

CVE-2018-3863

Exploit
  • EPSS 0.4%
  • Veröffentlicht 23.08.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:06:11

On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the stack. An attacker can send an HTTP request to t...

8.8

CVE-2018-3879

Exploit
  • EPSS 0.19%
  • Veröffentlicht 23.08.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:06:13

An exploitable JSON injection vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17. The video-core process incorrectly parses the user-controlled JSON...

9.9

CVE-2018-3878

Exploit
  • EPSS 0.39%
  • Veröffentlicht 23.08.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:06:13

Multiple exploitable buffer overflow vulnerabilities exist in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17. The video-core process incorrectly extracts fields from a ...

9.9

CVE-2018-3867

Exploit
  • EPSS 0.4%
  • Veröffentlicht 23.08.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:06:12

An exploitable stack-based buffer overflow vulnerability exists in the samsungWifiScan callback notification of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17. The video-core process incorrectly ...