CVE-2024-51346

CVE-2024-51346 affects Eufy Homebase 2 (v3.3.4.1h). The connected exploit document details cryptographic bypasses in P2P and media storage encryption: keys are derived from leaked/observable data (PPCS_ID, Serial Number, random header), enabling real-time decryption of P2P streams and stored medi...

Eufy Homebase 2 安全漏洞

The Eufy Homebase 2 is a home base device from the American company Eufy, designed for intelligent security device connectivity and local data storage management. Version 3.3.4.1h of the Eufy Homebase 2 contains a security vulnerability. This vulnerability stems from an encryption scheme issue,...

CVE-2021-21952

An authentication bypass vulnerability exists in the CMDDEVICEGETRSAKEYREQUEST functionality of the homesecurity binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to increased privileges...

CVE-2021-21953

An authentication bypass vulnerability exists in the processmsg function of the homesecurity binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted man-in-the-middle attack can lead to increased privileges...

CVE-2021-21951

An out-of-bounds write vulnerability exists in the CMDDEVICEGETSERVERLISTREQUEST functionality of the homesecurity binary of Anker Eufy Homebase 2 2.1.6.9h in function readudppushconfigfile. A specially-crafted network packet can lead to code execution...

CVE-2021-21950

An out-of-bounds write vulnerability exists in the CMDDEVICEGETSERVERLISTREQUEST functionality of the homesecurity binary of Anker Eufy Homebase 2 2.1.6.9h in function recvserverdeviceresponsemsgprocess. A specially-crafted network packet can lead to code execution...

PT-2021-5580 · Anker · Anker Eufy Homebase 2

Name of the Vulnerable Software and Affected Versions: Anker Eufy Homebase 2 version 2.1.6.9h Description: The issue is caused by an out-of-bounds write vulnerability in the read udp push config file function of the home security binary. This vulnerability can be exploited by a remote attacker...