← back
CVE-2022-33948

CVE-2022-33948

EPSS 1.0%
HOME SPOT CUBE2 V102 contains an OS command injection vulnerability due to improper processing of data received from DHCP server. An adjacent attacker may execute an arbitrary OS command on the product if a malicious DHCP server is placed on the WAN side of the product.
Affected products
KDDI CORPORATION · HOME SPOT CUBE2

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/jp/JVN41017328/index.htmlhttps://www.au.com/support/service/mobile/guide/wlan/home_spot_cube_2/