216.73.217.139

CVE-2024-52329

· Published 23/01/2025 17:15 · Modified 23/01/2025 17:15

Labels: CVE-2024-52329 2025-01-239119a7d8-5eab-497f-8521-727c672e3725CVE-2024-52329CWE-295

Essential information

Published
23/01/2025 17:15
Modified
23/01/2025 17:15
Author
Creator
CVSS
7.4 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS metrics

Description

ECOVACS HOME mobile app plugins for specific robots do not properly validate TLS certificates. An unauthenticated attacker can read or modify TLS traffic and obtain authentication tokens.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
9119a7d8-5eab-497f-8521-727c672e3725
NVD
View on NVD

References