0Rbitingzer0

**Name of the Vulnerable Software and Affected Versions** lwIP versions prior to 2.2.2 **Description** A stack-based buffer overflow exists in the snmpv3 USM Handler component. A remote attacker can trigger this issue by manipulating the `msgAuthenticationParameters` argument within the `snmp parse inbound frame()` function located in the `src/apps/snmp/snmp msg.c` file. **Recommendations** Install patch 0c957ec03054eb6c8205e9c9d1d05d90ada3898c. As a temporary workaround, restrict access to the snmpv3 USM Handler component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** NASA cFS versions prior to 7.0.0 **Description** A deserialization issue exists in the Pickle Module within the `pickle.load()` function. This flaw allows for manipulation through local access, although the attack requires a high level of complexity and is considered difficult to execute. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting the use of the `pickle.load()` function in the Pickle Module to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions NASA cFS versions up to 7.0.0 Description A flaw exists in NASA cFS up to version 7.0.0 within the CCSDS Packet Header Handler component. Specifically, the `CFE MSG GetSize` function in the file `apps/to lab/fsw/src/to lab passthru encode.c` is susceptible to a heap-based buffer overflow. Successful exploitation requires local network access. The project was notified of the issue but has not yet responded. Recommendations Update to a version newer than 7.0.0.

Name of the Vulnerable Software and Affected Versions NASA cFS versions up to 7.0.0 Description A flaw exists in NASA cFS up to version 7.0.0, specifically within the `CFE SB TransmitMsg` function located in the `cfe sb priv.c` file of the CCSDS Header Size Handler component. A manipulation of this function can result in memory corruption. Recommendations Update to a version beyond 7.0.0.

**Name of the Vulnerable Software and Affected Versions NASA cFS versions up to 7.0.0 Description A flaw exists in NASA cFS up to version 7.0.0 on 32-bit systems. The issue resides within the `CFE TBL ValidateCodecLoadSize` function, located in the file cfe/modules/tbl/fsw/src/cfe tbl passthru codec.c, and results in an integer overflow. Exploitation is considered difficult and requires a high level of complexity. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Yi Technology YI Home Camera 2 version 2.1.1 20171024151200 **Description** A security issue exists in Yi Technology YI Home Camera 2. A manipulation of an unknown function within the `home/web/ipc` file of the CGI Endpoint component results in a lack of authentication. Local network access is required for exploitation. The exploit has been publicly released. The vendor was contacted regarding this disclosure but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Yi Technology YI Home Camera 2 version 2.1.1 20171024151200 **Description** A security issue exists in Yi Technology YI Home Camera 2 version 2.1.1 20171024151200. The issue affects an unknown function within the WPA/WPS component. Successful exploitation allows the use of a hard-coded cryptographic key. The attack requires local network access and is considered difficult to exploit due to its high complexity. The exploit has been publicly disclosed. The vendor was notified but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Yi Technology YI Home Camera 2 version 2.1.1 20171024151200 **Description** A flaw exists in Yi Technology YI Home Camera 2 related to improper cryptographic signature verification within the HTTP Firmware Update Handler component. The issue resides in an unknown function of the `home/web/ipc` file. This allows for remote attacks, though the complexity is considered high and exploitability is difficult. An exploit is publicly available. The vendor was notified but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Yi Technology YI Home Camera 2 version 2.1.1 20171024151200 **Description** A security issue has been identified in Yi Technology YI Home Camera 2. The issue involves hard-coded credentials being exposed through manipulation of an unknown `function` within the `home/web/ipc` file. Successful exploitation requires access to the local network. The exploit for this issue has been publicly disclosed, and the vendor was notified but did not respond. **Recommendations** For Yi Technology YI Home Camera 2 version 2.1.1 20171024151200, at the moment, there is no information about a newer version that contains a fix for this vulnerability.