CVE-2017-2186by Jeremyin Security Bulletinson Posted on July 7, 2017 HOME SPOT CUBE2 firmware V101 and earlier allows an attacker to bypass authentication to load malicious firmware via WebUI.