CVE-2024-52330 | ECOVACS DEEBOT T10 Firmware Update certificate validation

CVE-2024-52330 | ECOVACS DEEBOT T10 Firmware Update certificate validation

A vulnerability, which was classified as problematic, was found in ECOVACS DEEBOT X5 PRO PLUS, DEEBOT X5 PRO, DEEBOT X2S, DEEBOT X2 OMNI, DEEBOT X1 TURBO, DEEBOT X1, DEEBOT X1S PRO, DEEBOT X1e OMNI, DEEBOT T10 PLUS, DEEBOT T10 OMNI, DEEBOT X5 PRO ULTRA, Mate X, DEEBOT X2 PRO, DEEBOT X2 COMBO, DEEBOT X1 OMNI, DEEBOT X1 PRO OMNI, DEEBOT X1 PLUS, DEEBOT X1S PRO PLUS, DEEBOT T10 TURBO and DEEBOT T10. Affected is an unknown function of the component Firmware Update Handler. The manipulation leads to improper certificate validation. This vulnerability is traded as CVE-2024-52330. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.