HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS commands via Clock Settings.
[
{
"product": "HOME SPOT CUBE2",
"vendor": "KDDI CORPORATION",
"versions": [
{
"status": "affected",
"version": "firmware V101 and earlier"
}
]
}
]