Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Home Spot Cube Firmware Security Vulnerabilities

cve
cve

CVE-2024-23978

Heap-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. By processing invalid values, arbitrary code may be executed. Note that the affected products are no longer...

9.8CVSS

9.7AI Score

0.001EPSS

2024-02-02 07:15 AM
15
cve
cve

CVE-2024-21780

Stack-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. Processing a specially crafted command may result in a denial of service (DoS) condition. Note that the affected products are no longer...

7.5CVSS

7.7AI Score

0.0005EPSS

2024-02-02 07:15 AM
13
cve
cve

CVE-2022-33948

HOME SPOT CUBE2 V102 contains an OS command injection vulnerability due to improper processing of data received from DHCP server. An adjacent attacker may execute an arbitrary OS command on the product if a malicious DHCP server is placed on the WAN side of the...

8.8CVSS

8.9AI Score

0.001EPSS

2022-07-04 02:15 AM
41
10
cve
cve

CVE-2017-2186

HOME SPOT CUBE2 firmware V101 and earlier allows an attacker to bypass authentication to load malicious firmware via...

8.8CVSS

8.8AI Score

0.001EPSS

2017-07-07 01:29 PM
26
cve
cve

CVE-2017-2183

HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS commands via Clock...

8CVSS

8.2AI Score

0.001EPSS

2017-07-07 01:29 PM
24
cve
cve

CVE-2017-2185

HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS commands via...

8.8CVSS

8.9AI Score

0.002EPSS

2017-07-07 01:29 PM
24
cve
cve

CVE-2017-2184

Buffer overflow in HOME SPOT CUBE2 firmware V101 and earlier allows an attacker to execute arbitrary code via...

8.8CVSS

9AI Score

0.003EPSS

2017-07-07 01:29 PM
23
cve
cve

CVE-2016-1141

KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified...

4.7CVSS

5.9AI Score

0.002EPSS

2016-01-30 03:59 PM
25
cve
cve

CVE-2016-1139

Cross-site request forgery (CSRF) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to hijack the authentication of unspecified victims via unknown...

7.5CVSS

7.8AI Score

0.002EPSS

2016-01-30 03:59 PM
25
cve
cve

CVE-2016-1140

KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified...

6.1CVSS

6.5AI Score

0.002EPSS

2016-01-30 03:59 PM
20
cve
cve

CVE-2016-1138

CRLF injection vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to inject arbitrary HTTP headers via unspecified...

4.7CVSS

5.6AI Score

0.002EPSS

2016-01-30 03:59 PM
21
cve
cve

CVE-2016-1137

Open redirect vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified...

7.4CVSS

7.3AI Score

0.003EPSS

2016-01-30 03:59 PM
19
cve
cve

CVE-2016-1136

Cross-site scripting (XSS) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...

5.4CVSS

5.4AI Score

0.001EPSS

2016-01-30 03:59 PM
25