CVE-2018-3872

CRITICAL Year: 2018
CVSS v3 Score
9.9
Critical
CVSS v2 Score
9.0
Critical
Weakness Type
CWE-119
View all →

Vulnerability Description

An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The video-core process incorrectly extracts the videoHostUrl field from a user-controlled JSON payload, leading to a buffer overflow on the stack. An attacker can send an HTTP request to trigger this vulnerability.

Related Vulnerabilities

CVE-2012-1516

CRITICAL
CVSS:9.9(Critical)

The VMX process in VMware ESXi 3.5 through 4.1 and ESX 3.5 through 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service (memory overwrite and process cra...

CWE-1192012

CVE-2017-4901

CRITICAL
CVSS:9.9(Critical)

The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds memory access vulnerability. This may allow a guest to execut...

CWE-1192017

CVE-2018-3873

CRITICAL
CVSS:9.9(Critical)

An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy overflows the de...

CWE-1192018

CVE-2018-3874

CRITICAL
CVSS:9.9(Critical)

An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy overflows the de...

CWE-1192018

CVE-2018-3875

CRITICAL
CVSS:9.9(Critical)

An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The video-core process incor...

CWE-1192018

CVE-2018-3877

CRITICAL
CVSS:9.9(Critical)

An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy overflows the de...

CWE-1192018