← Back

2864 222 Firmware

2864-222_firmware

Vendor: Insteon • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-12640
1Insteon
12864 222 Firmware
Nov 21, 2024
Jun 23, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The webService binary on Insteon HD IP Camera White 2864-222 devices has a Buffer Overflow via a crafted pid, pwd, or usr key in a GET request on port 34100.
CVE-2018-11560
1Insteon
12864 222 Firmware
Nov 21, 2024
Jun 23, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The webService binary on Insteon HD IP Camera White 2864-222 devices has a stack-based Buffer Overflow leading to Control-Flow Hijacking via a crafted usr key, as demonstrated by a long remoteIp parameter to cgi-bin/CGIP...Show more
The webService binary on Insteon HD IP Camera White 2864-222 devices has a stack-based Buffer Overflow leading to Control-Flow Hijacking via a crafted usr key, as demonstrated by a long remoteIp parameter to cgi-bin/CGIProxy.fcgi on port 34100.Show less