Vulnerabilities > HOM EE

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-20	CVE-2020-24395	Insufficient Verification of Data Authenticity vulnerability in Hom.Ee Brain Cube Core 2.28.2/2.28.4 The USB firmware update script of homee Brain Cube v2 (2.28.2 and 2.28.4) devices allows an attacker with physical access to install compromised firmware. local low complexity hom-ee CWE-345	7.2
2021-05-20	CVE-2020-24396	Insufficiently Protected Credentials vulnerability in Hom.Ee Brain Cube Core 2.28.2/2.28.4 homee Brain Cube v2 (2.28.2 and 2.28.4) devices have sensitive SSH keys within downloadable and unencrypted firmware images. network low complexity hom-ee CWE-522	7.5
2020-03-20	CVE-2019-16258	Missing Authentication for Critical Function vulnerability in Hom.Ee Brain Cube Core The bootloader of the homee Brain Cube V2 through 2.23.0 allows attackers with physical access to gain root access by manipulating the U-Boot environment via the CLI after connecting to the internal UART interface. local low complexity hom-ee CWE-306	7.2

Vulnerabilities > HOM EE {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"HOM EE"}]}