Stack-Based Overflow vulnerability in Belkin WeMo Insights Switch
CVE-2019-17094

8.3HIGH

Key Information:

Vendor: Belkin
Status: Belkin Wemo Insight Switch
Vendor: CVE Published:; 27 January 2020

What is CVE-2019-17094?

A Stack-based Buffer Overflow vulnerability in libbelkin_api.so component of Belkin WeMo Insight Switch firmware allows a local attacker to obtain code execution on the device. This issue affects: Belkin WeMo Insight Switch firmware version 2.00.11396 and prior versions.

Affected Version(s)

Belkin WeMo Insight Switch 2.00.11396 and prior

References

https://labs.bitdefender.com/2019/12/multiple-vulnerabili...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 27, 2020
Vulnerability Reserved
Oct 2, 2019

Credit

Bitdefender Labs