Published: 21/08/2018 Updated: 07/11/2023

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 10 | Impact Score: 6 | Exploitability Score: 3.9

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Subscribe to Wemo Insight Smart Plug Firmware

Stack-based Buffer Overflow vulnerability in libUPnPHndlr.so in Belkin Wemo Insight Smart Plug allows remote malicious users to bypass local security protection via a crafted HTTP post packet.

Vulnerable Product	Search on Vulmon	Subscribe to Product
belkin wemo_insight_smart_plug_firmware -

Security MadLibs: Your IoT electrical outlet can now pwn your smart TV

The Register • Shaun Nichols in San Francisco • 21 Aug 2018

McAfee finds new way to break thing that shouldn't be on your home network in the first place Another IoT botnet has been found feasting on vulnerable IP cameras

A security vulnerability in "smart" power plugs can be exploited to infiltrate local computer networks. The flaw, spotted in Belkin's Wemo Insight smartplugs, would potentially allow an attacker to not only manipulate the plug itself, but also allow hopping to other devices connected to the same Wi-Fi home network. Researchers at McAfee this week said they reported the remote code execution flaw, designated CVE-2018-6692, to Belkin in March. The exploit stems from a buffer overflow in the Univer...

CVE-2018-6692

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect