CVE-2018-6692

Published: Aug 21, 2018Modified: Nov 21, 2024

10.0

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 6.0

Source: NVD

Description

Stack-based Buffer Overflow vulnerability in libUPnPHndlr.so in Belkin Wemo Insight Smart Plug allows remote attackers to bypass local security protection via a crafted HTTP post packet.

Affected (1)

Products: Belkin: Wemo Insight Smart Plug Firmware

Belkin

1 product

Wemo Insight Smart Plug Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Belkin Wemo Insight Smart Plug Firmware	All versions

Running on/with	Platform Versions
Belkin Wemo Insight Smart Plug	All versions

Related CWEs

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

https://securingtomorrow.mcafee.com/mcafee-labs/insight-into-home-automation-reveals-vulnerability-in-simple-iot-product

Source: trellixpsirt@trellix.com

https://securingtomorrow.mcafee.com/mcafee-labs/insight-into-home-automation-reveals-vulnerability-in-simple-iot-product

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.