PT-2019-17420 · Nest · Nest Cam Iq Indoor

Claudio Bozzato

Publicado

2019-08-20

Atualizado

2022-06-27

CVE-2019-5034

CVSS v3.1

5.3

Média

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Nest Cam IQ Indoor version 4620002

Description An exploitable information disclosure issue exists in the Weave Legacy Pairing functionality. A set of specially crafted weave packets can cause an out of bounds read, resulting in information disclosure. An attacker can send packets to trigger this issue.

Recommendations For Nest Cam IQ Indoor version 4620002, at the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

CVE-2019-5034

Produtos afetados

Nest Cam Iq Indoor

PT-2019-17420 · Nest · Nest Cam Iq Indoor

CVE-2019-5034

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3