CVE-2025-2394
Disclosure of Alibaba (OSS) Keys In Ecovacs Home Android and iOS Mobile Applications
Ecovacs Home Android and iOS Mobile Applications up to version 3.3.0 contained embedded access keys and secrets for Alibaba Object Storage Service (OSS), leading to sensitive data disclosure.
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:H/SI:H/SA:H
Productos afectados
Ecovacs · Ecovacs Mobile and Android Application¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →