cve/CVE-2020-24396.md at eda58812c5773678e9432b65209fee245db925e7

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 11:06:19 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

876 B

Raw Blame History

CVE-2020-24396

Description

homee Brain Cube v2 (2.28.2 and 2.28.4) devices have sensitive SSH keys within downloadable and unencrypted firmware images. This allows remote attackers to use the support server as a SOCKS proxy.

POC

Reference

https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-027.txt
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-027.txt
https://www.syss.de/pentest-blog/
https://www.syss.de/pentest-blog/

Github

https://github.com/Live-Hack-CVE/CVE-2020-24396

876 B Raw Blame History

CVE-2020-24396

Description

POC

Reference

Github

876 B

Raw Blame History