CVE-2018-3907 Information

Description

An exploitable vulnerability exists in the REST parser of video-core’s HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The video-core process incorrectly handles pipelined HTTP requests which allows successive requests to overwrite the previously parsed HTTP method ‘on_url’ callback. An attacker can send an HTTP request to trigger this vulnerability.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

Reference

https://talosintelligence.com/vulnerability_reports/TALOS-2018-0577 An exploitable vulnerability exists in the REST parser of video-core’s HTTP server of the Samsung SmartThings Hub STH-ETH-250

Firmware version 0.20.17. The video-core process incorrectly handles pipelined HTTP requests which allows successive requests to overwrite the previously parsed HTTP method ‘on_url’ callback. An attacker can send an HTTP request to trigger this vulnerability.

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

CHANGED

Integrity Impact

NONE

Availability Impact

HIGH

Base Score

NONE

Base Severity

8.6