Описание
An exploitable denial-of-service vulnerability exists in the Weave daemon of the Nest Cam IQ Indoor, version 4620002. A set of TCP connections can cause unrestricted resource allocation, resulting in a denial of service. An attacker can connect multiple times to trigger this vulnerability.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:google:nest_cam_iq_indoor_firmware:4620002:*:*:*:*:*:*:*
cpe:2.3:h:google:nest_cam_iq_indoor:-:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00198
Низкий
5.3 Medium
CVSS3
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-400
CWE-770
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
An exploitable denial-of-service vulnerability exists in the Weave daemon of the Nest Cam IQ Indoor, version 4620002. A set of TCP connections can cause unrestricted resource allocation, resulting in a denial of service. An attacker can connect multiple times to trigger this vulnerability.
EPSS
Процентиль: 42%
0.00198
Низкий
5.3 Medium
CVSS3
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-400
CWE-770