Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2024-52329
Disclosure Date: January 23, 2025 (last updated January 24, 2025)
ECOVACS HOME mobile app plugins for specific robots do not properly validate TLS certificates. An unauthenticated attacker can read or modify TLS traffic and obtain authentication tokens.
0
Attacker Value
Unknown
CVE-2024-52327
Disclosure Date: January 23, 2025 (last updated January 24, 2025)
The cloud service used by ECOVACS robot lawnmowers and vacuums allows authenticated attackers to bypass the PIN entry required to access the live video feed.
0
