VYPR

Vendor CVEs

Insteon

All CVEs

115 total · sorted by risk
  • CVE-2017-16286CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16285CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16284CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16283CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16282CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16281CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16280CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16279CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16278CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16277CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16276CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16275CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16274CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16273CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16272CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16271CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16270CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16269CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16268CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16267CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16266CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16265CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16264CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16263CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16262CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16260CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16259CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16258CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16257CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16256CriJan 11, 2023
    risk 0.64cvss 9.9epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16347CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01e7d4 the value for the s_vol key is copied using strcpy to the buffer at 0xa0001700. This buffer is maximum 12 bytes large (this is the…

  • CVE-2017-16346CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c368 the value for the s_mac key is copied using strcpy to the buffer at 0xa000170c. This buffer is 25 bytes large, sending anything longer…

  • CVE-2017-16345CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c318 the value for the s_port key is copied using strcpy to the buffer at 0xa00017f4. This buffer is 6 bytes large, sending anything longer…

  • CVE-2017-16344CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c2c8 the value for the s_url key is copied using strcpy to the buffer at 0xa0001a0c. This buffer is 16 bytes large, sending anything longer…

  • CVE-2017-16343CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c284 the value for the s_vol_brt_delta key is copied using strcpy to the buffer at 0xa0000510. This buffer is 4 bytes large, sending anything…

  • CVE-2017-16342CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c254 the value for the s_vol_dim_delta key is copied using strcpy to the buffer at 0xa0000514. This buffer is 4 bytes large, sending anything…

  • CVE-2017-16341CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c224 the value for the s_vol_play key is copied using strcpy to the buffer at 0xa0000418. This buffer is maximum 8 bytes large (this is the…

  • CVE-2017-16340CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c0e8 the value for the s_dport key is copied using strcpy to the buffer at 0xa000180c. This buffer is 6 bytes large, sending anything longer…

  • CVE-2017-16339CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01bb1c the value for the uri key is copied using strcpy to the buffer at 0xa00016a0. This buffer is 64 bytes large, sending anything longer…

  • CVE-2017-16338CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01bad0 the value for the host key is copied using strcpy to the buffer at 0xa00016e0. This buffer is 32 bytes large, sending anything longer…

  • CVE-2017-14446CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An exploitable stack-based buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation unsafely extracts parameters from the query string, leading to a buffer overflow on the stack. An attacker can send an HTTP GET request to…

  • CVE-2017-14445CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the host parameter during a firmware update request, leading to a buffer overflow on a global section. An attacker can send an…

  • CVE-2017-14444CriAug 2, 2018
    risk 0.64cvss 9.9epss 0.01

    An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the URL parameter during a firmware update request, leading to a buffer overflow on a global section. An attacker can send an HTTP…

  • CVE-2018-12640CriJun 23, 2018
    risk 0.64cvss 9.8epss 0.02

    The webService binary on Insteon HD IP Camera White 2864-222 devices has a Buffer Overflow via a crafted pid, pwd, or usr key in a GET request on port 34100.

  • CVE-2018-11560CriJun 23, 2018
    risk 0.64cvss 9.8epss 0.02

    The webService binary on Insteon HD IP Camera White 2864-222 devices has a stack-based Buffer Overflow leading to Control-Flow Hijacking via a crafted usr key, as demonstrated by a long remoteIp parameter to cgi-bin/CGIProxy.fcgi on port 34100.

  • CVE-2017-5250CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.01

    In version 1.9.7 and prior of Insteon's Insteon for Hub Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner.

  • CVE-2018-3832CriAug 23, 2018
    risk 0.59cvss 9.0epss 0.02

    An exploitable firmware update vulnerability exists in Insteon Hub running firmware version 1013. The HTTP server allows for uploading arbitrary MPFS binaries that could be modified to enable access to hidden resources which allow for uploading unsigned firmware images to the…

  • CVE-2017-16261HigJan 11, 2023
    risk 0.57cvss 8.8epss 0.01

    Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary…

  • CVE-2017-16337HigAug 23, 2018
    risk 0.57cvss 8.8epss 0.02

    On Insteon Hub 2245-222 devices with firmware version 1012, specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authenticated HTTP request to trigger this vulnerability. At…

  • CVE-2013-4859HigDec 27, 2019
    risk 0.56cvss 8.1epss 0.07

    INSTEON Hub 2242-222 lacks Web and API authentication