Vulnerability Details : CVE-2018-12716
Potential exploit
The API service on Google Home and Chromecast devices before mid-July 2018 does not prevent DNS rebinding attacks from reading the scan_results JSON data, which allows remote attackers to determine the physical location of most web browsers by leveraging the presence of one of these devices on its local network, extracting the scan_results bssid fields, and sending these fields in a geolocation/v1/geolocate Google Maps Geolocation API request.
Vulnerability category: Information leak
Products affected by CVE-2018-12716
- cpe:2.3:o:google:chromecast_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:google:home_firmware:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-12716
0.19%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 42 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-12716
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.3
|
LOW | AV:A/AC:L/Au:N/C:P/I:N/A:N |
6.5
|
2.9
|
NIST | |
4.3
|
MEDIUM | CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
2.8
|
1.4
|
NIST |
CWE ids for CVE-2018-12716
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-12716
-
https://medium.com/@brannondorsey/attacking-private-networks-from-the-internet-with-dns-rebinding-ea7098a2d325
Attacking Private Networks from the Internet with DNS RebindingExploit;Third Party Advisory
-
https://krebsonsecurity.com/2018/06/google-to-fix-location-data-leak-in-google-home-chromecast/
Google to Fix Location Data Leak in Google Home, Chromecast — Krebs on SecurityIssue Tracking;Third Party Advisory
-
https://www.wired.com/story/chromecast-roku-sonos-dns-rebinding-vulnerability/
Millions of Google, Roku, and Sonos Devices Are Vulnerable to a Web Attack | WIREDThird Party Advisory
-
https://www.tripwire.com/state-of-security/vert/googles-newest-feature-find-my-home/
Google’s Newest Feature: Find My HomeThird Party Advisory
Jump to