CVE-2018-3916

HIGH

Samsung STH-ETH-250 Firmware 0.20.17 - Stack-Based Buffer Overflow via Directory Parameter

Title source: llm
STIX 2.1

Description

An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The strcpy call overflows the destination buffer, which has a size of 136 bytes. An attacker can send an arbitrarily long 'directory' value in order to exploit this vulnerability. An attacker can send an HTTP request to trigger this vulnerability.

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0581

Scores

CVSS v3 7.8
EPSS 0.0006
EPSS Percentile 18.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (1)
samsung/sth-eth-250_firmware 0.20.17
Published Aug 28, 2018
Tracked Since Feb 18, 2026