CVE-2025-30199

Publication date

2025-09-05 17:45:07

Family

cisa-cg

State

PUBLISHED

Description

ECOVACS vacuum robot base stations do not validate firmware updates, so malicious over-the-air updates can be sent to base station via insecure connection between robot and base station.