Vulnerabilities > CVE-2018-6692 - Out-of-bounds Write vulnerability in Belkin Wemo Insight Smart Plug Firmware

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

belkin

CWE-787

critical

NVD

Published: 2018-08-21

Updated: 2023-11-07

Summary

Stack-based Buffer Overflow vulnerability in libUPnPHndlr.so in Belkin Wemo Insight Smart Plug allows remote attackers to bypass local security protection via a crafted HTTP post packet.

Vulnerable Configurations

Part	Description	Count
OS	Belkin Belkin Wemo Insight Smart Plug Firmware -	1
Hardware	Belkin Belkin Wemo Insight Smart Plug -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://securingtomorrow.mcafee.com/mcafee-labs/insight-into-home-automation-reveals-vulnerability-in-simple-iot-product