Japan Vulnerability NotesJVN:54686544JVN#54686544: HOME SPOT CUBE multiple vulnerabilities
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
68.9%
HOME SPOT CUBE provided by KDDI CORPORATION is a wireless LAN router. HOME SPOT CUBE contains multiple vulnerabilities listed below.
Cross-site scripting - CVE-2016-1136
| Version | Vector | Score |
|---|---|---|
| CVSS v3 | CVSS:3.0/AV:A/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N | Base Score: 4.3 |
| CVSS v2 | AV:A/AC:L/Au:S/C:N/I:P/A:N | Base Score: 2.7 |
Open redirect - CVE-2016-1137
| Version | Vector | Score |
|---|---|---|
| CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N | Base Score: 4.7 |
| CVSS v2 | AV:N/AC:H/Au:N/C:N/I:P/A:N | Base Score: 2.6 |
HTTP header injection - CVE-2016-1138
| Version | Vector | Score |
|---|---|---|
| CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N | Base Score: 4.7 |
| CVSS v2 | AV:N/AC:H/Au:N/C:N/I:P/A:N | Base Score: 2.6 |
Cross-site request forgery - CVE-2016-1139
| Version | Vector | Score |
|---|---|---|
| CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N | Base Score: 4.3 |
| CVSS v2 | AV:N/AC:H/Au:N/C:N/I:P/A:N | Base Score: 2.6 |
Click jacking - CVE-2016-1140
| Version | Vector | Score |
|---|---|---|
| CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N | Base Score: 4.3 |
| CVSS v2 | AV:N/AC:H/Au:N/C:N/I:P/A:N | Base Score: 2.6 |
OS command injection - CVE-2016-1141
| Version | Vector | Score |
|---|---|---|
| CVSS v3 | CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L | Base Score: 4.3 |
| CVSS v2 | AV:A/AC:L/Au:S/C:P/I:P/A:P | Base Score: 5.2 |
Impact
The affect of each vulnerability is as follows.
- An arbitrary script may be executed on user’s web browser - CVE-2016-1136
- A user may be transferred to the external website specified by an attacker - CVE-2016-1137
- An HTTP response splitting attack may result in arbitrary cookie values - CVE-2016-1138
- An arbitrary administrative operation such as setting alteration may be executed - CVE-2016-1139, CVE-2016-1140
- An arbitrary OS command may be executed with the privileges of the application - CVE-2016-1141
For more information, refer to the information provided by the developer.
Solution
Apply a Workaround
The following workaround can mitigate the affects of these vulnerabilities.
- Change the login password for the setting screen
- Do not access other websites while logged into the setting screen
- Close the web browser after setting operations are completed
- Delete the password stored in the web browser
For more details, refer to the information provided by the developer.
The developer recommends that users should consider to use alternative products such as HOME SPOT CUBE2.
Products Affected
- HOME SPOT CUBE
According to the developer, HOME SPOT CUBE2 is not affected by these vulnerabilities.
Related
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
68.9%