CVEs (6)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Kddi 1Home Spot Cube Firmware May 6, 2026 Jan 30, 2016 N/A· v4 4.7 MEDIUM· v3 6.5 MEDIUM· v2 KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified vectors. |
1Kddi 1Home Spot Cube Firmware May 6, 2026 Jan 30, 2016 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified vectors. |
Cross-site request forgery (CSRF) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. |
1Kddi 1Home Spot Cube Firmware May 6, 2026 Jan 30, 2016 N/A· v4 4.7 MEDIUM· v3 4.3 MEDIUM· v2 CRLF injection vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to inject arbitrary HTTP headers via unspecified vectors. |
Open redirect vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. |
Cross-site scripting (XSS) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. |