Security Advisory
CVE-2024-52329
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
ECOVACS HOME mobile app plugins for specific robots do not properly validate TLS certificates. An unauthenticated attacker can read or modify TLS traffic and obtain authentication tokens.