Kddi Home Spot Cube 2 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Kddi Home Spot Cube 2 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2024-23978 — CVSS 9.8 (critical): Heap-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. By processing invalid values, arbitrary code may be…
CVE-2017-2184 — CVSS 8.8 (high): Buffer overflow in HOME SPOT CUBE2 firmware V101 and earlier allows an attacker to execute arbitrary code via WebUI.
CVE-2017-2185 — CVSS 8.8 (high): HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS commands via WebUI.
CVE-2022-33948 — CVSS 8.8 (high): HOME SPOT CUBE2 V102 contains an OS command injection vulnerability due to improper processing of data received from DHCP server. An…
CVE-2017-2186 — CVSS 8.8 (high): HOME SPOT CUBE2 firmware V101 and earlier allows an attacker to bypass authentication to load malicious firmware via WebUI.
CVE-2017-2183 — CVSS 8.0 (high): HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS commands via Clock Settings.
CVE-2024-21780 — CVSS 7.5 (high): Stack-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. Processing a specially crafted command may result in…