Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kddi home spot cube 2 firmware vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-2186
HOME SPOT CUBE2 firmware V101 and previous versions allows an malicious user to bypass authentication to load malicious firmware via WebUI.
Kddi Home Spot Cube 2 Firmware V100
Kddi Home Spot Cube 2 Firmware V101
8.8
CVSSv3
CVE-2017-2185
HOME SPOT CUBE2 firmware V101 and previous versions allows authenticated malicious users to execute arbitrary OS commands via WebUI.
Kddi Home Spot Cube 2 Firmware V100
Kddi Home Spot Cube 2 Firmware V101
8
CVSSv3
CVE-2017-2183
HOME SPOT CUBE2 firmware V101 and previous versions allows authenticated malicious users to execute arbitrary OS commands via Clock Settings.
Kddi Home Spot Cube 2 Firmware V100
Kddi Home Spot Cube 2 Firmware V101
8.8
CVSSv3
CVE-2017-2184
Buffer overflow in HOME SPOT CUBE2 firmware V101 and previous versions allows an malicious user to execute arbitrary code via WebUI.
Kddi Home Spot Cube 2 Firmware V100
Kddi Home Spot Cube 2 Firmware V101
8.8
CVSSv3
CVE-2022-33948
HOME SPOT CUBE2 V102 contains an OS command injection vulnerability due to improper processing of data received from DHCP server. An adjacent attacker may execute an arbitrary OS command on the product if a malicious DHCP server is placed on the WAN side of the product.
Kddi Home Spot Cube 2 Firmware
7.5
CVSSv3
CVE-2024-21780
Stack-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and previous versions. Processing a specially crafted command may result in a denial of service (DoS) condition. Note that the affected products are no longer supported.
Kddi Home Spot Cube 2 Firmware V102
9.8
CVSSv3
CVE-2024-23978
Heap-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and previous versions. By processing invalid values, arbitrary code may be executed. Note that the affected products are no longer supported.
Kddi Home Spot Cube 2 Firmware V102
6.1
CVSSv3
CVE-2016-1140
KDDI HOME SPOT CUBE devices prior to 2 allow remote malicious users to conduct clickjacking attacks via unspecified vectors.
Kddi Home Spot Cube Firmware 2.0
4.7
CVSSv3
CVE-2016-1141
KDDI HOME SPOT CUBE devices prior to 2 allow remote authenticated users to execute arbitrary OS commands via unspecified vectors.
Kddi Home Spot Cube Firmware 2.0
4.7
CVSSv3
CVE-2016-1138
CRLF injection vulnerability on KDDI HOME SPOT CUBE devices prior to 2 allows remote malicious users to inject arbitrary HTTP headers via unspecified vectors.
Kddi Home Spot Cube Firmware 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »