Neatorobotics Botvac Connected Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Neatorobotics Botvac Connected Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-19442 — CVSS 9.8 (critical): A Buffer Overflow in Network::AuthenticationClient::VerifySignature in /bin/astro in Neato Botvac Connected 2.2.0 allows a remote attacker…
CVE-2018-18638 — CVSS 8.1 (high): A command injection vulnerability in the setup API in the Neato Botvac Connected 2.2.0 allows network attackers to execute arbitrary…
CVE-2018-20785 — CVSS 7.4 (high): Secure boot bypass and memory extraction can be achieved on Neato Botvac Connected 2.2.0 devices. During startup, the AM335x secure boot…
CVE-2018-19441 — CVSS 4.7 (medium): An issue was discovered in Neato Botvac Connected 2.2.0. The GenerateRobotPassword function of the NeatoCrypto library generates…