Samsung Smartthings Hub Sth-eth-250
23 CVEs affecting Samsung Smartthings Hub Sth-eth-250. Latest disclosed: 2018-09-21. Critical: 11, High: 12.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-3877 | Critical | 9.9 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3874 | Critical | 9.9 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3873 | Critical | 9.9 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3875 | Critical | 9.9 | 2018-09-10 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3919 | Critical | 9.9 | 2018-08-23 | An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in video-core's HTTP server of Samsung SmartThings Hub STH-… |
CVE-2018-3917 | Critical | 9.9 | 2018-08-23 | On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process insecurely extracts the fields from the "shard" table of i… |
CVE-2018-3905 | Critical | 9.9 | 2018-08-23 | An exploitable buffer overflow vulnerability exists in the camera "create" feature of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices w… |
CVE-2018-3902 | Critical | 9.9 | 2018-08-23 | An exploitable buffer overflow vulnerability exists in the camera "replace" feature of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices… |
CVE-2018-3878 | Critical | 9.9 | 2018-08-23 | Multiple exploitable buffer overflow vulnerabilities exist in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 device… |
CVE-2018-3867 | Critical | 9.9 | 2018-08-23 | An exploitable stack-based buffer overflow vulnerability exists in the samsungWifiScan callback notification of video-core's HTTP server of Samsung SmartThings… |
CVE-2018-3863 | Critical | 9.9 | 2018-08-23 | On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process incorrectly extracts fields from a user-controlled JSON pa… |
CVE-2018-3894 | High | 8.8 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmw… |
CVE-2018-3876 | High | 8.8 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3865 | High | 8.8 | 2018-09-20 | An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmwa… |
CVE-2018-3864 | High | 8.8 | 2018-09-20 | An exploitable buffer overflow vulnerability exists in the Samsung WifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmwa… |
CVE-2018-3897 | High | 8.8 | 2018-09-10 | An exploitable buffer overflow vulnerabilities exist in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub with Firmware ve… |
CVE-2018-3896 | High | 8.8 | 2018-09-10 | An exploitable buffer overflow vulnerabilities exist in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub with Firmware ve… |
CVE-2018-3879 | High | 8.8 | 2018-08-23 | An exploitable JSON injection vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices with f… |
CVE-2018-3925 | High | 8.5 | 2018-08-23 | An exploitable buffer overflow vulnerability exists in the remote video-host communication of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 d… |
CVE-2018-3915 | High | 8.2 | 2018-09-21 | An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hu… |