Published: 13/07/2023 Updated: 21/07/2023

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 0

Incorrect signature verification of the firmware during the Device Firmware Update process of Belkin Wemo Smart Plug WSP080 v1.2 allows malicious users to cause a Denial of Service (DoS) via a crafted firmware file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
belkin wemo_smart_plug_wsp080_firmware 1.2

DoS against Belkin smart plugs via crafted firmware injection

CVE-2023-33768 [Description] Incorrect signature verification of the firmware during the Device Firmware Update process of Belkin Wemo Smart Plug WSP080 v12 allows attackers to cause a Denial of Service (DoS) via a crafted firmware file [Additional Information] When updating the firmware of the Wemo smart plug via its mobile application, we found that if firmware signature of

DoS against Belkin smart plugs via crafted firmware injection

CVE-2023-33768 [Description] Incorrect signature verification of the firmware during the Device Firmware Update process of Belkin Wemo Smart Plug WSP080 v12 allows attackers to cause a Denial of Service (DoS) via a crafted firmware file [Additional Information] When updating the firmware of the Wemo smart plug via its mobile application, we found that if firmware signature of

CWE-347 https://www.amazon.com/Control-Devices-Remotely-Assistant-HomeKit/dp/B08CJGZZZ1 https://github.com/purseclab/CVE-2023-33768 https://play.google.com/store/apps/details?id=com.belkin.wemoandroid&hl=en_US&gl=US https://nvd.nist.gov https://github.com/Fr0stM0urne/CVE-2023-33768

CVE-2023-33768

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect