Samsung Sth-eth-250_firmware
40 CVEs affecting Samsung Sth-eth-250_firmware. Latest disclosed: 2018-09-21. Critical: 18, High: 19.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-3907 | Critical | 10.0 | 2018-08-24 | An exploitable vulnerability exists in the REST parser of video-core's HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The v… |
CVE-2018-3877 | Critical | 9.9 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3874 | Critical | 9.9 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3873 | Critical | 9.9 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3875 | Critical | 9.9 | 2018-09-10 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |
CVE-2018-3904 | Critical | 9.9 | 2018-08-27 | An exploitable buffer overflow vulnerability exists in the camera 'update' feature of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmwar… |
CVE-2018-3880 | Critical | 9.9 | 2018-08-23 | An exploitable stack-based buffer overflow vulnerability exists in the database 'find-by-cameraId' functionality of video-core's HTTP server of Samsung SmartTh… |
CVE-2018-3872 | Critical | 9.9 | 2018-08-23 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware ve… |
CVE-2018-3866 | Critical | 9.9 | 2018-08-23 | An exploitable buffer overflow vulnerability exists in the samsungWifiScan handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmwar… |
CVE-2018-3856 | Critical | 9.9 | 2018-08-23 | An exploitable vulnerability exists in the smart cameras RTSP configuration of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The device i… |
CVE-2018-3919 | Critical | 9.9 | 2018-08-23 | An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in video-core's HTTP server of Samsung SmartThings Hub STH-… |
CVE-2018-3917 | Critical | 9.9 | 2018-08-23 | On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process insecurely extracts the fields from the "shard" table of i… |
CVE-2018-3905 | Critical | 9.9 | 2018-08-23 | An exploitable buffer overflow vulnerability exists in the camera "create" feature of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices w… |
CVE-2018-3903 | Critical | 9.9 | 2018-08-23 | On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process incorrectly extracts fields from a user-controlled JSON pa… |
CVE-2018-3902 | Critical | 9.9 | 2018-08-23 | An exploitable buffer overflow vulnerability exists in the camera "replace" feature of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 devices… |
CVE-2018-3878 | Critical | 9.9 | 2018-08-23 | Multiple exploitable buffer overflow vulnerabilities exist in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 device… |
CVE-2018-3867 | Critical | 9.9 | 2018-08-23 | An exploitable stack-based buffer overflow vulnerability exists in the samsungWifiScan callback notification of video-core's HTTP server of Samsung SmartThings… |
CVE-2018-3863 | Critical | 9.9 | 2018-08-23 | On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process incorrectly extracts fields from a user-controlled JSON pa… |
CVE-2018-3894 | High | 8.8 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmw… |
CVE-2018-3876 | High | 8.8 | 2018-09-21 | An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware vers… |