homee Brain Cube v2 (2.28.2 and 2.28.4) devices have sensitive SSH keys within downloadable and unencrypted firmware images. This allows remote attackers to use the support server as a SOCKS proxy.
Weakness
The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Brain_cube_core | Hom.ee | 2.28.2 (including) | 2.28.2 (including) |
| Brain_cube_core | Hom.ee | 2.28.4 (including) | 2.28.4 (including) |
Potential Mitigations
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/102.html
- https://cwe.mitre.org/data/definitions/474.html
- https://cwe.mitre.org/data/definitions/50.html
- https://cwe.mitre.org/data/definitions/509.html
- https://cwe.mitre.org/data/definitions/551.html
- https://cwe.mitre.org/data/definitions/555.html
- https://cwe.mitre.org/data/definitions/560.html
- https://cwe.mitre.org/data/definitions/561.html
- https://cwe.mitre.org/data/definitions/600.html
- https://cwe.mitre.org/data/definitions/644.html
- https://cwe.mitre.org/data/definitions/645.html
- https://cwe.mitre.org/data/definitions/652.html
- https://cwe.mitre.org/data/definitions/653.html
References
- https://cwe.mitre.org/data/definitions/522.html
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-027.txt
- https://www.syss.de/pentest-blog/
- https://cwe.mitre.org/data/definitions/522.html
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-027.txt
- https://www.syss.de/pentest-blog/