Home

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2024-52329 CRITICAL POC Act Now

ECOVACS HOME mobile app plugins for specific robots do not properly validate TLS certificates. Rated critical severity (CVSS 9.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Home
NVD
CVSS 4.0
9.5
EPSS
0.7%
CVE-2024-52327 MEDIUM POC This Month

The cloud service used by ECOVACS robot lawnmowers and vacuums allows authenticated attackers to bypass the PIN entry required to access the live video feed. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Home
NVD
CVSS 4.0
6.0
EPSS
0.1%
CVE-2024-52329
EPSS 1% CVSS 9.5
CRITICAL POC Act Now

ECOVACS HOME mobile app plugins for specific robots do not properly validate TLS certificates. Rated critical severity (CVSS 9.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Home
NVD
CVE-2024-52327
EPSS 0% CVSS 6.0
MEDIUM POC This Month

The cloud service used by ECOVACS robot lawnmowers and vacuums allows authenticated attackers to bypass the PIN entry required to access the live video feed. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Home
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy