PT-2018-16287 · Samsung · Samsung Smartthings Hub
Published
2018-09-21
·
Updated
2022-12-02
·
CVE-2018-3894
CVSS v3.1
9.9
Critical
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17
Description
A buffer overflow issue exists in the /cameras/XXXX/clips handler of the video-core's HTTP server. The
strncpy call overflows a destination buffer of 52 bytes. An attacker can exploit this by sending a long startTime value.Recommendations
For Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17, consider restricting access to the /cameras/XXXX/clips handler until a patch is available. As a temporary workaround, avoid using arbitrarily long
startTime values in the affected API endpoint.Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Samsung Smartthings Hub