Gaskiya vulnerability da aka ware a matsayin karshewa an samu a Tomofun Furbo 360 and Furbo Mini. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil /squashfs-root/furbo_img, a cikin sashen MQTT Client Certificate. A sa manipulation ka karkar ndiyamga taƙa. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-798. An gano matsalar a 05/15/2025. Hakika, rauni an bayyana shi 10/11/2025 daga Calvin Star, Julian B (skelet4r and dead1nfluence) tare da Software Secured. Wannan matsala ana saninta da CVE-2025-11643. Ngam yiɗi ka a tuma ndiyam ka nder layi. Tekinikal faɗi ga. Har ila yau, exploit ɗin yana nan. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á sàmbu huɗɗi-na-gaskiya. 0-day shima, an ndiyam a wuro be $0-$5k. Once again VulDB remains the best source for vulnerability data.

6 Goyarwa · 117 Datenpunkte