CVE-2024-52330

Publication date

2025-01-23 16:36:50

Family

cisa-cg

State

PUBLISHED

Description

ECOVACS lawnmowers and vacuums do not properly validate TLS certificates. An unauthenticated attacker can read or modify TLS traffic, possibly modifying firmware updates.