Vulnerabilities (CVE)

Filtered by vendor Anker Subscribe

Filtered by product Eufy Homebase 2 Firmware

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-21953	1 Anker	2 Eufy Homebase 2, Eufy Homebase 2 Firmware	2022-07-29	6.8 MEDIUM	8.1 HIGH
An authentication bypass vulnerability exists in the process_msg() function of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted man-in-the-middle attack can lead to increased privileges.
CVE-2021-21955	1 Anker	2 Eufy Homebase 2, Eufy Homebase 2 Firmware	2022-04-28	5.0 MEDIUM	7.5 HIGH
An authentication bypass vulnerability exists in the get_aes_key_info_by_packetid() function of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. Generic network sniffing can lead to password recovery. An attacker can sniff network traffic to trigger this vulnerability.