As part of my Masters’ research, I investigated the firmware of a widely popular smart home security device – the iSmartAlarm CubeOne. Two (2) vulnerabilities were found and disclosed responsibly to the vendor. The vulnerabilities have been assigned the CVE IDs CVE-2017-13663 and CVE-2017-13664.