Security Advisory

CVE-2026-33361

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-05-11 16:03:55

Last updated 2026-05-11 18:17:43

Assigner runZero

State PUBLISHED

Description

In Meari IoT SDK image handling (libmrplayer.so) as observed in CloudEdge 5.5.0 (build 220), Arenti 1.8.1 (build 220), and related white-label apps (<= 1.8.x), baby monitor ".jpgx3" files use reversible XOR over only the first 1024 bytes with a predictable key derivation model.

← Browse all CVEs View on cve.org ↗