CVE-2018-3904

Name of the Vulnerable Software and Affected Versions Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17

Description A buffer overflow issue exists in the camera 'update' feature of the video-core's HTTP server. This occurs because the video-core process incorrectly extracts fields from a user-controlled JSON payload, leading to a buffer overflow on the stack. An attacker can trigger this issue by sending a specific HTTP request.

Recommendations For Firmware version 0.20.17, at the moment, there is no information about a newer version that contains a fix for this vulnerability.