Vulnerabilities > Ismartalarm > High

DATE CVE VULNERABILITY TITLE RISK
2017-12-01 CVE-2017-13663 Cleartext Storage of Sensitive Information vulnerability in Ismartalarm Cubeone Firmware
Encryption key exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to decrypt log files via an exposed key.
network
low complexity
ismartalarm CWE-312
7.5
7.5
2017-07-11 CVE-2017-7730 Improper Input Validation vulnerability in Ismartalarm Cubeone Firmware
iSmartAlarm cube devices allow Denial of Service.
network
low complexity
ismartalarm CWE-20
7.5
7.5
2017-07-11 CVE-2017-7729 Missing Encryption of Sensitive Data vulnerability in Ismartalarm Cubeone Firmware
On iSmartAlarm cube devices, there is Incorrect Access Control because a "new key" is transmitted in cleartext.
network
low complexity
ismartalarm CWE-311
7.5
7.5
2017-07-11 CVE-2017-7726 Improper Certificate Validation vulnerability in Ismartalarm Cubeone Firmware
iSmartAlarm cube devices have an SSL Certificate Validation Vulnerability.
network
low complexity
ismartalarm CWE-295
7.5
7.5