2 matches found
CVE-2018-19441
An issue was discovered in Neato Botvac Connected 2.2.0. The GenerateRobotPassword function of the NeatoCrypto library generates insufficiently random numbers for robot secretkey values used for local and cloud authentication/authorization. If an attacker knows the serial number and is able to...
CVE-2018-19441
The CVE-2018-19441 issue affects Neato Botvac Connected 2.2.0. The GenerateRobotPassword function in the NeatoCrypto library uses insufficiently random numbers for robot secret_key values used in local and cloud authentication/authorization. Entropy depends solely on the robot’s serial number (pr...