Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2024-52330
Disclosure Date: January 23, 2025 (last updated January 24, 2025)
ECOVACS lawnmowers and vacuums do not properly validate TLS certificates. An unauthenticated attacker can read or modify TLS traffic, possibly modifying firmware updates.
0
Attacker Value
Unknown
CVE-2024-52325
Disclosure Date: January 23, 2025 (last updated January 24, 2025)
ECOVACS robot lawnmowers and vacuums are vulnerable to command injection via SetNetPin() over an unauthenticated BLE connection.
0
