Vulnerabilities > HOM EE > Brain Cube Core > 2.28.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-20 | CVE-2020-24395 | Insufficient Verification of Data Authenticity vulnerability in Hom.Ee Brain Cube Core 2.28.2/2.28.4 The USB firmware update script of homee Brain Cube v2 (2.28.2 and 2.28.4) devices allows an attacker with physical access to install compromised firmware. | 6.8 |
| 2021-05-20 | CVE-2020-24396 | Insufficiently Protected Credentials vulnerability in Hom.Ee Brain Cube Core 2.28.2/2.28.4 homee Brain Cube v2 (2.28.2 and 2.28.4) devices have sensitive SSH keys within downloadable and unencrypted firmware images. | 7.5 |