149 matches found
CVE-2022-21806
A use-after-free vulnerability exists in the mipscollector appsrvserver functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to remote code execution. The device is exposed to attacks from the network...
Design/Logic Flaw
A use-after-free vulnerability exists in the mipscollector appsrvserver functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to remote code execution. The device is exposed to attacks from the network...
CVE-2022-21806
CVE-2022-21806 affects Anker Eufy Homebase 2 (2.1.8.5h). Talos-reported use-after-free in mips_collector's appsrv_server, reachable over the network, potentially enabling remote code execution via crafted MT messages. The issue’s impact is described as high/critical, with the server component exp...
CVE-2022-21806
A use-after-free vulnerability exists in the mipscollector appsrvserver functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to remote code execution. The device is exposed to attacks from the network...
CVE-2022-21806
A use-after-free vulnerability exists in the mipscollector appsrvserver functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to remote code execution. The device is exposed to attacks from the network...
Vulnerability Spotlight: Vulnerabilities in Anker Eufy Homebase could lead to code execution, authentication bypass
Lilith of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Cisco Talos recently discovered three vulnerabilities in the Anker Eufy Homebase 2. The Eufy Homebase 2 is the video storage and networking gateway that works with Anker’s Eufy Smarthome ecosystem.... This is only the...
Anker Eufy Homebase 2 mips_collector appsrv_server use-after-free vulnerability
Talos Vulnerability Report TALOS-2022-1440 Anker Eufy Homebase 2 mipscollector appsrvserver use-after-free vulnerability June 15, 2022 CVE Number CVE-2022-21806 SUMMARY A use-after-free vulnerability exists in the mipscollector appsrvserver functionality of Anker Eufy Homebase 2 2.1.8.5h. A...
Anker Eufy Homebase 资源管理错误漏洞
Anker Eufy Homebase is a wireless home security camera system from Eufy USA. A security vulnerability exists in Anker Eufy Homebase 2 version 2.1.8.5h that stems from a post-release reuse issue in the mipscollector appsrvserver function...
The vulnerability of the CMD_DEVICE_GET_RSA_KEY_REQUEST function in Anker Eufy Homebase surveillance systems allows a intruder to bypass authentication procedures or gain unauthorized access to the device.
The vulnerability of the CMDDEVICEGETRSAKEYREQUEST function in Anker Eufy Homebase surveillance systems is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to bypass authentication procedures or gain unauthorized access to the devic...
The vulnerability of the `get_aes_key_info_by_packetid()` function in Anker Eufy Homebase surveillance systems allows a intruder to bypass the authentication process.
The vulnerability of the getaeskeyinfobypacketid function in Anker Eufy Homebase surveillance systems is related to a small number of possible random values. Exploiting this vulnerability could allow a malicious actor to bypass the authentication process remotely...
The vulnerability of the process_msg() function in Anker Eufy Homebase surveillance systems allows intruders to enhance their privileges within the target system.
The vulnerability of the processmsg function in Anker Eufy Homebase surveillance systems is related to improper operation of the authentication process. Exploiting this vulnerability could allow a malicious actor to gain increased privileges within the target system by performing a...
CVE-2022-25989
An authentication bypass vulnerability exists in the libxmav.so getpeermac functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted DHCP packet can lead to authentication bypass. An attacker can DHCP poison to trigger this vulnerability...
CVE-2022-25989
An authentication bypass vulnerability exists in the libxmav.so getpeermac functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted DHCP packet can lead to authentication bypass. An attacker can DHCP poison to trigger this vulnerability...
CVE-2022-26073
A denial of service vulnerability exists in the libxmav.so DemuxCmdInBuffer functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to a device reboot. An attacker can send packets to trigger this vulnerability...
CVE-2022-26073
A denial of service vulnerability exists in the libxmav.so DemuxCmdInBuffer functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to a device reboot. An attacker can send packets to trigger this vulnerability...
Denial of service
A denial of service vulnerability exists in the libxmav.so DemuxCmdInBuffer functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to a device reboot. An attacker can send packets to trigger this vulnerability...
Authentication flaw
An authentication bypass vulnerability exists in the libxmav.so getpeermac functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted DHCP packet can lead to authentication bypass. An attacker can DHCP poison to trigger this vulnerability...
CVE-2022-26073
CVE-2022-26073 affects Anker Eufy Homebase 2 with firmware 2.1.8.5h. TALOS documents a vulnerability in libxm_av.so DemuxCmdInBuffer where an integer/overread in WifiComRecv processing of crafted network packets can crash the homebase, causing a DoS and device reboot. Affected component: DemuxCmd...
CVE-2022-26073
A denial of service vulnerability exists in the libxmav.so DemuxCmdInBuffer functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to a device reboot. An attacker can send packets to trigger this vulnerability...
CVE-2022-26073
A denial of service vulnerability exists in the libxmav.so DemuxCmdInBuffer functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to a device reboot. An attacker can send packets to trigger this vulnerability...