CVE-2022-33948
N/A
N/A
Summary
HOME SPOT CUBE2 V102 contains an OS command injection vulnerability due to improper processing of data received from DHCP server. An adjacent attacker may execute an arbitrary OS command on the product if a malicious DHCP server is placed on the WAN side of the product.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| KDDI CORPORATION | HOME SPOT CUBE2 | V102 and earlier | affected |
Weaknesses
- OS Command Injection
ADP Enrichment
CVE Program Container
Additional References
- https://www.au.com/support/service/mobile/guide/wlan/home_spot_cube_2/
- https://jvn.jp/en/jp/JVN41017328/index.html
References
- https://www.au.com/support/service/mobile/guide/wlan/home_spot_cube_2/
- https://jvn.jp/en/jp/JVN41017328/index.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.