Approved changes feed: RSS · Atom

cpe:2.3:a:anker:eufy_homebase_2:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAnker (7413995c-13b1-55b0-a8ec-774b3af46774)
ProductEufy Homebase 2 (4d169a22-ce2a-50c8-a660-396634e5d198)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-29503 vulnerable 2026-06-08 05:42:48.282253 Details available
HIGH (8.1)
A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng 1.0.40. Thread allocation can lead to memory corruption. An attacker can create threads to trigger this vulnerability.
Published: 2022-09-29T16:35:09.040Z
Updated: 2025-04-15T18:49:23.011Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-26073 vulnerable 2026-06-08 05:41:50.486570 Details available
HIGH (7.4)
A denial of service vulnerability exists in the libxm_av.so DemuxCmdInBuffer functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to a device reboot. An attacker can send packets to trigger this vulnerability.
Published: 2022-05-05T17:35:25.778Z
Updated: 2025-04-15T19:04:20.230Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-25989 vulnerable 2026-06-08 05:41:49.815847 Details available
HIGH (7.1)
An authentication bypass vulnerability exists in the libxm_av.so getpeermac() functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted DHCP packet can lead to authentication bypass. An attacker can DHCP poison to trigger this vulnerability.
Published: 2022-05-05T17:35:09.869Z
Updated: 2025-04-15T19:04:26.742Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-21806 vulnerable 2026-06-08 05:40:02.444230 Details available
CRITICAL (10)
A use-after-free vulnerability exists in the mips_collector appsrv_server functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to remote code execution. The device is exposed to attacks from the network.
Published: 2022-06-17T17:40:13.512Z
Updated: 2025-04-15T19:00:31.630Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.