Multiple vulnerabilities in Samsung SmartThings Hub
Recently, the Talos team announced some vulnerabilities related to Samsung SmartThings Hub, including high-risk vulnerabilities such as command injection and remote code execution, with a maximum CVSS score of 9.9.
Vulnerability Overview
Vulnerability name/category | CVE | CVSS score |
Video-core Camera Update Code Execution Vulnerability | CVE-2018-3903CVE-2018-3904 | 9.9 |
Video-core voucher code execution vulnerability | CVE-2018-3873CVE-2018-3878 | 9.9 |
Video-core credential videoHostUrl code execution vulnerability | CVE-2018-3872 | 9.9 |
Video-core samsungWifiScan code execution vulnerability | CVE-2018-3863CVE-2018-3866 | 9.9 |
HubCore 39500 Port Synchronous Denial of Service Vulnerability | CVE-2018-3918 | 6.5 |
Video-core camera code execution vulnerability | CVE-2018-3905 | 8.5 |
Video-core samsungWifiScan code execution vulnerability | CVE-2018-3867 | 9.9 |
Video-core Database Code Execution Vulnerability | CVE-2018-3919 | 7.5 |
Video-core Database Query Code Execution Vulnerability | CVE-2018-3880 | 8.2 |
Hubcore 39500 Port Header Injection Vulnerability | CVE-2018-3911 | 8.6 |
Video-core AWSELB Cookie Code Line Vulnerability | CVE-2018-3925 | 8.5 |
Video-core REST HTTP Parsing Request Injection Vulnerability | CVE-2018-3907CVE-2018-3909 | 9.1 |
Video-core database shard.videoHostURL code execution vulnerability | CVE-2018-3906 | 7.5 |
hubCore ZigBee Firmware Upgrade CRC16 Verify Denial of Service Vulnerability | CVE-2018-3926 | 5.3 |
Video-core Database Code Execution Vulnerability | CVE-2018-3912CVE-2018-3917 | 7.5 |
Video-core clips code execution vulnerability | CVE-2018-3893CVE-2018-3897 | 9.9 |
HubCore Google Breakpad backtrace.io Information Disclosure Vulnerability | CVE-2018-3927 | 6.8 |
Video-core credential parsing SQL injection vulnerability | CVE-2018-3879 | 8.8 |
Video-core RTSP Configuration Command Injection Vulnerability | CVE-2018-3856 | 9.9 |
Video-core Camera URL Replacement Code Execution Vulnerability | CVE-2018-3902 | 9.9 |
Affected version
- Samsung SmartThings Hub STH-ETH-250 Firmware Version 20.17
Solution
Samsung SmartThings has released a new version of the firmware to fix the high vulnerability, and affected users should update it for protection.