Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ismartalarm cubeone firmware - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-7728
On iSmartAlarm cube devices, there is authentication bypass leading to remote execution of commands (e.g., setting the alarm on/off), related to incorrect cryptography.
Ismartalarm Cubeone Firmware -
7.5
CVSSv3
CVE-2017-7726
iSmartAlarm cube devices have an SSL Certificate Validation Vulnerability.
Ismartalarm Cubeone Firmware -
7.5
CVSSv3
CVE-2017-7729
On iSmartAlarm cube devices, there is Incorrect Access Control because a "new key" is transmitted in cleartext.
Ismartalarm Cubeone Firmware -
7.5
CVSSv3
CVE-2017-7730
iSmartAlarm cube devices allow Denial of Service. Sending a SYN flood on port 12345 will freeze the "cube" and it will stop responding.
Ismartalarm Cubeone Firmware -
9.8
CVSSv3
CVE-2017-13664
Password file exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and previous versions allows malicious users to execute arbitrary commands with administrative privileges by retrieving credentials from this file.
Ismartalarm Cubeone Firmware
5.3
CVSSv3
CVE-2018-16224
Incorrect access control for the diagnostic files of the iSmartAlarm Cube One up to and including 2.2.4.10 allows an malicious user to retrieve them via a specifically crafted TCP request to port 12345 and 22306, and access sensitive information from the device.
Ismartalarm Cubeone Firmware
1 Github repository
7.5
CVSSv3
CVE-2017-13663
Encryption key exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and previous versions allows malicious users to decrypt log files via an exposed key.
Ismartalarm Cubeone Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started