Approved changes feed: RSS · Atom

cpe:2.3:o:anker:eufy_homebase_2_firmware:2.1.6.9h:*:*:*:*:*:*:*

part: o version: 2.1.6.9h update: *

VendorAnker (7413995c-13b1-55b0-a8ec-774b3af46774)
ProductEufy Homebase 2 Firmware (963fc827-712e-5bd1-a00b-1e6195389ae0)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-21955 vulnerable 2026-06-08 05:29:59.145712 Details available
HIGH (7.7)
An authentication bypass vulnerability exists in the get_aes_key_info_by_packetid() function of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. Generic network sniffing can lead to password recovery. An attacker can sniff network traffic to trigger this vulnerability.
Published: 2021-12-09T15:32:43.000Z
Updated: 2024-08-03T18:30:23.598Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-21954 vulnerable 2026-06-08 05:29:59.145265 Details available
CRITICAL (9.9)
A command execution vulnerability exists in the wifi_country_code_update functionality of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to arbitrary command execution.
Published: 2021-12-09T15:32:38.000Z
Updated: 2024-08-03T18:30:23.653Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-21953 vulnerable 2026-06-08 05:29:59.144693 Details available
HIGH (7.7)
An authentication bypass vulnerability exists in the process_msg() function of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted man-in-the-middle attack can lead to increased privileges.
Published: 2021-12-22T18:07:17.000Z
Updated: 2024-08-03T18:30:23.526Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-21952 vulnerable 2026-06-08 05:29:59.144251 Details available
CRITICAL (9.4)
An authentication bypass vulnerability exists in the CMD_DEVICE_GET_RSA_KEY_REQUEST functionality of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to increased privileges.
Published: 2021-12-22T18:07:16.000Z
Updated: 2024-08-03T18:30:23.628Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-21951 vulnerable 2026-06-08 05:29:59.141878 Details available
CRITICAL (10)
An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST functionality of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h in function read_udp_push_config_file. A specially-crafted network packet can lead to code execution.
Published: 2021-12-08T21:28:15.000Z
Updated: 2024-08-03T18:30:23.655Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-21950 vulnerable 2026-06-08 05:29:59.141418 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-21941 vulnerable 2026-06-08 05:29:59.131446 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-21940 vulnerable 2026-06-08 05:29:59.129662 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.