PT-2017-15242 · Home Spot · Home Spot Cube2
Published
2017-07-07
·
Updated
2017-07-14
·
CVE-2017-2183
CVSS v3.1
8.0
High
| Vector | AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
HOME SPOT CUBE2 firmware versions V101 and earlier
Description
The issue allows authenticated attackers to execute arbitrary OS commands via Clock Settings.
Recommendations
For HOME SPOT CUBE2 firmware versions V101 and earlier, update to a version later than V101 to resolve the issue.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Home Spot Cube2