Security Advisory

CVE-2024-52329

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-23 16:36:06
Last updated 2025-02-12 20:41:29
Assigner cisa-cg
State PUBLISHED

Description

ECOVACS HOME mobile app plugins for specific robots do not properly validate TLS certificates. An unauthenticated attacker can read or modify TLS traffic and obtain authentication tokens.