Insteon

Hub Firmware

97 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2017-14452

Exploit
  • EPSS 0.43%
  • Veröffentlicht 23.08.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:12:49

An exploitable buffer overflow vulnerability exists in the PubNub message handler for the "control" channel of Insteon Hub running firmware version 1012. Specially crafted replies received from the PubNub service can cause buffer overflows on a globa...

8.1

CVE-2017-16252

Exploit
  • EPSS 0.73%
  • Veröffentlicht 06.08.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:16:06

Specially crafted commands sent through the PubNub service in Insteon Hub 2245-222 with firmware version 1012 can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authenticated HTTP request to trigger this vu...

7.7

CVE-2017-14447

Exploit
  • EPSS 0.55%
  • Veröffentlicht 06.08.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 03:12:48

An exploitable buffer overflow vulnerability exists in the PubNub message handler for the 'ad' channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow ov...

9.9

CVE-2017-14445

Exploit
  • EPSS 0.36%
  • Veröffentlicht 02.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:12:48

An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the host parameter during a firmware update request, leading to a buffer overflow on a global section...

9.9

CVE-2017-14444

Exploit
  • EPSS 0.36%
  • Veröffentlicht 02.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:12:48

An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the URL parameter during a firmware update request, leading to a buffer overflow on a global section....

9.9

CVE-2017-14446

Exploit
  • EPSS 0.36%
  • Veröffentlicht 02.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:12:48

An exploitable stack-based buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation unsafely extracts parameters from the query string, leading to a buffer overflow on the stack. An attacker ca...

9.9

CVE-2017-16338

Exploit
  • EPSS 0.89%
  • Veröffentlicht 02.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:16:17

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01bad0 the value for the host key is copied using strcpy to the buffer at 0xa00016e0. This buffer is 32 bytes larg...

9.9

CVE-2017-16339

Exploit
  • EPSS 0.89%
  • Veröffentlicht 02.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:16:17

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01bb1c the value for the uri key is copied using strcpy to the buffer at 0xa00016a0. This buffer is 64 bytes large...

9.9

CVE-2017-16340

Exploit
  • EPSS 0.73%
  • Veröffentlicht 02.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:16:17

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c0e8 the value for the s_dport key is copied using strcpy to the buffer at 0xa000180c. This buffer is 6 bytes la...

9.9

CVE-2017-16341

Exploit
  • EPSS 0.89%
  • Veröffentlicht 02.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:16:17

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c224 the value for the s_vol_play key is copied using strcpy to the buffer at 0xa0000418. This buffer is maximum...