CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2017-14445

CRITICAL
9.9
CVSS Severity Score
EPSS Score0.0020%
EPSS Percentile28.56th
Published2018年8月2日
Last Modified2024年11月21日

Vulnerability Description

An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the host parameter during a firmware update request, leading to a buffer overflow on a global section. An attacker can send an HTTP GET request to trigger this vulnerability.

Affected Platforms (CPE)

💻
Insteon

Hub Firmware

= 1012

References & Advisories

🔗 https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0494
🔗 https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0494

相關漏洞威脅

CVE-2018-390710.0

An exploitable vulnerability exists in the REST parser of video-core's HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Fi...

CVE-2017-144469.9

An exploitable stack-based buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server impl...

CVE-2017-144449.9

An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation i...

CVE-2017-163389.9

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. A...