ECOVACS Vacuum and Base Station Hard-Coded WPA2-PSK Vulnerability

A vulnerability exists in ECOVACS robot vacuums and base stations due to the use of a hard-coded, deterministic WPA2-PSK encryption key for Wi-Fi communication. This key can be easily derived from the device's serial number, leading to potential unauthorized access. Additionally, the base stations do not validate firmware updates, allowing malicious over-the-air updates to be sent via the insecure connection between the robot and the base station.

Impact

Exploitation of this vulnerability could enable an attacker to intercept or manipulate communications between the robot vacuum and its base station, potentially leading to unauthorized control of the device or execution of malicious code.

Remediation

ECOVACS has released software updates for all affected devices. Users can perform the system update to address this vulnerability. For more information, see the ECOVACS security advisory.