Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable integer underflow vulnerability exists in the ZigBee firmware update routine of the hubCore binary of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The hubCore process incorrectly handles malformed files existing in its data directory, leading to an infinite loop, which eventually causes the process to crash. An attacker can send an HTTP request to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Samsung SmartThings Hub 数字错误漏洞
Vulnerability Description
Samsung SmartThings Hub是韩国三星(Samsung)公司的一款智能家居管理设备。 Samsung SmartThings Hub中的hubCore binary的ZigBee固件更新例程存在整数溢出漏洞,该漏洞源于hubCore进程没有正确的处理‘data’目录下畸形的文件。攻击者可通过发送HTTP请求利用该漏洞造成无限循环,导致进程崩溃。
CVSS Information
N/A
Vulnerability Type
N/A