CVE-2020-24396
homee Brain Cube v2 (2.28.2 and 2.28.4) devices have sensitive SSH keys within downloadable and unencrypted firmware images. This allows remote attackers to use the support server as a SOCKS proxy.
Date published : 2021-05-20
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-027.txt