An authentication bypass vulnerability exists in the get_aes_key_info_by_packetid() function of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. Generic network sniffing can lead to password recovery. An attacker can sniff network traffic to trigger this vulnerability.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NAnker Eufy Homebase 2
HWAnkerwszystkie wersjeAnker Eufy Homebase 2 Firmware
OSAnker2.1.6.9h
Powiązane podatności
A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and u...
A use-after-free vulnerability exists in the mips_collector appsrv_server functionality of Anker Eufy Homebase...
An authentication bypass vulnerability exists in the CMD_DEVICE_GET_RSA_KEY_REQUEST functionality of the home_...
A command execution vulnerability exists in the wifi_country_code_update functionality of the home_security bi...
An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST functionality of the hom...