Vulnerabilities

CVE-2024-52328

by Fred · 23/01/2025

ECOVACS robot lawnmowers and vacuums insecurely store audio files used to indicate that the camera is on. An attacker with access to the /data filesystem can delete or modify warning files such that users may not be aware that the camera is on.

More information : https://dontvacuum.me/talks/37c3-2023/37c3-vacuuming-and-mowing.pdf

Similar

Tags: Cybersecurity Alert