Vulnerabilities > Samsung > STH ETH 250 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-09-21 CVE-2018-3913 Out-of-bounds Write vulnerability in Samsung Sth-Eth-250 Firmware 0.20.17
An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17.
local
low complexity
samsung CWE-787
6.7
2018-08-28 CVE-2018-3926 Integer Underflow (Wrap or Wraparound) vulnerability in Samsung Sth-Eth-250 Firmware 0.20.17
An exploitable integer underflow vulnerability exists in the ZigBee firmware update routine of the hubCore binary of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17.
local
low complexity
samsung CWE-191
5.5
2018-08-27 CVE-2018-3927 Improper Certificate Validation vulnerability in Samsung Sth-Eth-250 Firmware 0.20.17
An exploitable information disclosure vulnerability exists in the crash handler of the hubCore binary of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17.
network
high complexity
samsung CWE-295
5.9