RSS   Podatności dla 'Cube one firmware'   RSS

2017-07-11
 
CVE-2017-7730

 

 
iSmartAlarm cube devices allow Denial of Service. Sending a SYN flood on port 12345 will freeze the "cube" and it will stop responding.

 
 
CVE-2017-7729

CWE-311
 

 
On iSmartAlarm cube devices, there is Incorrect Access Control because a "new key" is transmitted in cleartext.

 
 
CVE-2017-7728

CWE-noinfo
 

 
On iSmartAlarm cube devices, there is authentication bypass leading to remote execution of commands (e.g., setting the alarm on/off), related to incorrect cryptography.

 
 
CVE-2017-7726

 

 
iSmartAlarm cube devices have an SSL Certificate Validation Vulnerability.

 

 >>> Vendor: Ismartalarm 3 Produkty
Cube one firmware
Cubeone firmware
Ismartalarm


Copyright 2024, cxsecurity.com

 

Back to Top