CVE-2017-14446

Name of the Vulnerable Software and Affected Versions: Insteon Hub version 1012

Description: A stack-based buffer overflow issue exists due to the HTTP server implementation unsafely extracting parameters from the query string, leading to a buffer overflow on the stack. An attacker can send an HTTP GET request to trigger this issue.

Recommendations: For Insteon Hub version 1012, consider disabling the HTTP server functionality until a patch is available to prevent exploitation of the buffer overflow vulnerability. Restrict access to the device to minimize the risk of exploitation.