Vulnerabilities > Kddi > Home Spot Cube 2 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-02 | CVE-2024-21780 | Out-of-bounds Write vulnerability in Kddi Home Spot Cube 2 Firmware V102 Stack-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. | 7.5 |
| 2024-02-02 | CVE-2024-23978 | Out-of-bounds Write vulnerability in Kddi Home Spot Cube 2 Firmware V102 Heap-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. | 9.8 |
| 2022-07-04 | CVE-2022-33948 | OS Command Injection vulnerability in Kddi Home Spot Cube 2 Firmware V100/V101/V102 HOME SPOT CUBE2 V102 contains an OS command injection vulnerability due to improper processing of data received from DHCP server. | 8.3 |
| 2017-07-07 | CVE-2017-2186 | Improper Authentication vulnerability in Kddi Home Spot Cube 2 Firmware V100/V101 HOME SPOT CUBE2 firmware V101 and earlier allows an attacker to bypass authentication to load malicious firmware via WebUI. | 8.3 |
| 2017-07-07 | CVE-2017-2185 | OS Command Injection vulnerability in Kddi Home Spot Cube 2 Firmware V100/V101 HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS commands via WebUI. | 5.2 |
| 2017-07-07 | CVE-2017-2184 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Kddi Home Spot Cube 2 Firmware V100/V101 Buffer overflow in HOME SPOT CUBE2 firmware V101 and earlier allows an attacker to execute arbitrary code via WebUI. | 5.8 |
| 2017-07-07 | CVE-2017-2183 | OS Command Injection vulnerability in Kddi Home Spot Cube 2 Firmware V100/V101 HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS commands via Clock Settings. | 5.2 |