exploitDog

CVE-2017-7730

Опубликовано: 11 июл. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Низкий

Описание

iSmartAlarm cube devices allow Denial of Service. Sending a SYN flood on port 12345 will freeze the "cube" and it will stop responding.

Ссылки

http://dojo.bullguard.com/blog/burglar-hacker-when-a-physical-security-is-compromised-by-iot-vulnerabilities/
Exploit
Third Party Advisory
http://dojo.bullguard.com/blog/burglar-hacker-when-a-physical-security-is-compromised-by-iot-vulnerabilities/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:ismartalarm:cubeone_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:ismartalarm:cubeone:-:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00296

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-gh3v-qf25-6582

CVSS3: 7.5

github

больше 3 лет назад

iSmartAlarm cube devices allow Denial of Service. Sending a SYN flood on port 12345 will freeze the "cube" and it will stop responding.

EPSS

Процентиль: 53%

0.00296

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-20