Vulnerabilities > Ismartalarm > Cubeone Firmware > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-01 | CVE-2017-13664 | Information Exposure vulnerability in Ismartalarm Cubeone Firmware Password file exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to execute arbitrary commands with administrative privileges by retrieving credentials from this file. | 9.8 |
| 2017-07-11 | CVE-2017-7728 | Unspecified vulnerability in Ismartalarm Cubeone Firmware On iSmartAlarm cube devices, there is authentication bypass leading to remote execution of commands (e.g., setting the alarm on/off), related to incorrect cryptography. | 9.8 |