Apple HomePod

Evaluation Details

Device	Mobile Application
Vendor: Apple	Target Platform: iOS
Model: MQHW2LL/A	Package Name: N/A
Firmware Version: 11.2.5 (15D59)	Package Version: N/A
Evaluation Date: 03/21/2018	Evaluation Date: N/A

Device Score - 85.71% (B)

Property	Score	Why is this important?
Internet Pairing ^(?)	2/3	Explain
Configuration ^(?)	0/7	Explain
Upgradability ^(?)	1/4	Explain
Exposesed Services ^(?)	3/4	Explain
Vulnerabilities Low (CVSS) ^(?)	0/3	Explain
Vulnerabilities Medium (CVSS) ^(?)	0/4	Explain
Vulnerabilities High (CVSS) ^(?)	0/7	Explain
Vulnerabilities Critical (CVSS) ^(?)	0/10	Explain
Total	6/42	Total score for the device component, higher is worst

Mobile Score - 100.0% (A)

Property	Score	Why is this important?
Sensitive Data ^(?)	0/6	Explain
Programming Errors ^(?)	0/4	Explain
Excess Permissions ^(?)	0/3	Explain
Total	0/13	Total score for the device component, higher is worst

Cloud Score - 56.52% (F)

Property	Score	Why is this important?
First-party endpoints ^(?)	3/3	Explain
Third-party endpoints ^(?)	3/5	Explain
Hybrid endpoints ^(?)	4/4	Explain
Self-Signed Certificates ^(?)	10/10	Explain
Name Mismatch on Certificate ^(?)	10/10	Explain
Vulnerable TLS/SSL version ^(?)	10/10	Explain
Unsupported OS ^(?)	0/11	Explain
Information Disclosure ^(?)	0/12	Explain
Cleartext Authentication ^(?)	0/13	Explain
Exploitable Services ^(?)	0/14	Explain
Total	40/92	Total score for the device component, higher is worst

Network Score - 89.29% (B)

Property	Score	Why is this important?
Third-party DNS ^(?)	0/2	Explain
HTTP ^(?)	0/1	Explain
UPnP ^(?)	0/2	Explain
NTPv3 ^(?)	1/1	Explain
Custom Protocol ^(?)	2/2	Explain
MITM Device-to-Cloud ^(?)	0/4	Explain
MITM Mobile-to-Cloud ^(?)	0/4	Explain
MITM Mobile-to-Device ^(?)	0/2	Explain
Encryption Device-to-Cloud ^(?)	0/4	Explain
Encryption Mobile-to-Cloud ^(?)	0/4	Explain
Encryption Mobile-to-Device ^(?)	0/2	Explain
Total	3/28	Total score for the device component, higher is worst