Security Advisory
CVE-2024-52331
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
ECOVACS robot lawnmowers and vacuums use a deterministic symmetric key to decrypt firmware updates. An attacker can create and encrypt malicious firmware that will be successfully decrypted and installed by the robot.