Vulnerabilities > Insteon

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-23	CVE-2018-12640	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Insteon 2864-222 Firmware The webService binary on Insteon HD IP Camera White 2864-222 devices has a Buffer Overflow via a crafted pid, pwd, or usr key in a GET request on port 34100. network low complexity insteon CWE-119 critical	9.8
2018-06-23	CVE-2018-11560	Out-of-bounds Write vulnerability in Insteon 2864-222 Firmware The webService binary on Insteon HD IP Camera White 2864-222 devices has a stack-based Buffer Overflow leading to Control-Flow Hijacking via a crafted usr key, as demonstrated by a long remoteIp parameter to cgi-bin/CGIProxy.fcgi on port 34100. network low complexity insteon CWE-787 critical	9.8
2018-02-22	CVE-2017-5251	Missing Encryption of Sensitive Data vulnerability in Insteon HUB Firmware In version 1012 and prior of Insteon's Insteon Hub, the radio transmissions used for communication between the hub and connected devices are not encrypted. network high complexity insteon CWE-311	8.1
2018-02-22	CVE-2017-5250	Insecure Storage of Sensitive Information vulnerability in Insteon for HUB 1.9.7 In version 1.9.7 and prior of Insteon's Insteon for Hub Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner. network low complexity insteon CWE-922 critical	9.8

Vulnerabilities > Insteon {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Insteon"}]}