2 matches found
CVE-2022-25989
Anker Eufy Homebase 2 (version 2.1.8.5h) contains an authentication bypass in the libxm_av.so getpeermac() function. A specially crafted DHCP packet can trigger DHCP poisoning to bypass authentication, enabling access to internal ports if the attacker can poison the network. TALOS reports the vul...
CVE-2022-25989
An authentication bypass vulnerability exists in the libxmav.so getpeermac functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted DHCP packet can lead to authentication bypass. An attacker can DHCP poison to trigger this vulnerability...