Insteon - Hub 2245-222 Firmware CVE

Filtered by vendor Insteon Subscribe

Filtered by product Hub 2245-222 Firmware

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-14443	1 Insteon	2 Hub 2245-222, Hub 2245-222 Firmware	2019-01-25	4.0 MEDIUM	6.5 MEDIUM
An exploitable information leak vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly checks the number of GET parameters supplied, leading to an arbitrarily controlled information leak on the whole device memory. An attacker can send an authenticated HTTP request to trigger this vulnerability.

Vulnerabilities (CVE)