Neatorobotics Botvac D7 Connected Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Neatorobotics Botvac D7 Connected Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-17176 — CVSS 7.5 (high): A replay issue was discovered on Neato Botvac Connected 2.2.0 devices. Manual control mode requires authentication, but once recorded, the…
CVE-2018-20785 — CVSS 7.4 (high): Secure boot bypass and memory extraction can be achieved on Neato Botvac Connected 2.2.0 devices. During startup, the AM335x secure boot…
CVE-2018-17178 — CVSS 5.3 (medium): An issue was discovered on Neato Botvac Connected 2.2.0 devices. They execute unauthenticated manual drive commands (sent to /bin/webserver…
CVE-2018-17177 — CVSS 2.4 (low): An issue was discovered on Neato Botvac Connected 2.2.0 and Botvac 85 1.2.1 devices. Static encryption is used for the copying of so-called…