cvedb.io
CVE-2017-14447
HIGH · CVSS 8.5
EPSS exploitation probability: 0%
Published 2018-08-06T17:29:01.303 · Last modified 2026-06-17T01:06:09.983

Summary

An exploitable buffer overflow vulnerability exists in the PubNub message handler for the 'ad' channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authenticated HTTP request to trigger this vulnerability.

Affected products

insteon — hub_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when insteon ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.