High severity7.5NVD Advisory· Published Aug 20, 2019· Updated Jun 17, 2026
CVE-2019-5040
CVE-2019-5040
Description
An exploitable information disclosure vulnerability exists in the Weave MessageLayer parsing of Openweave-core version 4.0.2 and Nest Cam IQ Indoor version 4620002. A specially crafted weave packet can cause an integer overflow to occur, resulting in PacketBuffer data reuse. An attacker can send a packet to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Openweave/Openweave-coredescription
- Range: =4620002
- Range: =4.0.2
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2019-0803nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.