Exploitation Summary
EIP tracks 2 public exploits for CVE-2023-33768. PoCs published by Fr0stM0urne, purseclab.
AI-analyzed exploit summary This PoC exploits CVE-2023-33768, a DoS vulnerability in Belkin Wemo Smart Plug WSP080 due to incorrect firmware signature verification. It uses Frida to inject modified firmware URLs into the Wemo Android app, causing the device to brick upon receiving crafted firmware.
Description
Incorrect signature verification of the firmware during the Device Firmware Update process of Belkin Wemo Smart Plug WSP080 v1.2 allows attackers to cause a Denial of Service (DoS) via a crafted firmware file.
Exploits (2)
This PoC exploits CVE-2023-33768, a DoS vulnerability in Belkin Wemo Smart Plug WSP080 due to incorrect firmware signature verification. It uses Frida to inject modified firmware URLs into the Wemo Android app, causing the device to brick upon receiving crafted firmware.
This PoC exploits CVE-2023-33768, a DoS vulnerability in Belkin Wemo Smart Plug WSP080 v1.2 due to incorrect firmware signature verification. It uses Frida to inject a modified firmware URL into the Wemo Android app, causing the device to brick upon receiving the crafted firmware.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H