Опубликовано: 23 янв. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 5.3
CVSS3: 6.3
Описание
ECOVACS robot lawn mowers and vacuums use a shared, static secret key to encrypt BLE GATT messages. An unauthenticated attacker within BLE range can control any robot using the same key.
ECOVACS robot lawn mowers and vacuums use a shared, static secret key to encrypt BLE GATT messages. An unauthenticated attacker within BLE range can control any robot using the same key.
Связанные уязвимости
CVSS3: 6.3
nvd
около 1 года назад
ECOVACS robot lawn mowers and vacuums use a shared, static secret key to encrypt BLE GATT messages. An unauthenticated attacker within BLE range can control any robot using the same key.