CVE-2018-19441
Last modified
CVE-2018-19441 is a medium-severity vulnerability rated 4.7/10 on the CVSS scale. An issue was discovered in Neato Botvac Connected 2.2.0. The GenerateRobotPassword function of the NeatoCrypto library generates insufficiently random numbers for robot secret_key values used for local and cloud authentication/authorization. EPSS estimates a 0.30% chance of exploitation in the next 30 days.
Description
An issue was discovered in Neato Botvac Connected 2.2.0. The GenerateRobotPassword function of the NeatoCrypto library generates insufficiently random numbers for robot secret_key values used for local and cloud authentication/authorization. If an attacker knows the serial number and is able to estimate the time of first provisioning of a robot, he is able to brute force the generated secret_key of the robot. This is because the entropy of the secret_key exclusively relies on these two values, due to not seeding the random generator and using several constant inputs for secret_key computation. Serial numbers are printed on the packaging and equal the MAC address of the robot.
Metrics
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Neatorobotics | Botvac Connected Firmware | 2.2.0 |
References
- https://www.usenix.org/system/files/woot19-paper_ullrich.pdfThird Party Advisory
- https://www.youtube.com/watch?v=k5nj7Jhwn9cThird Party Advisory
- https://www.usenix.org/system/files/woot19-paper_ullrich.pdfThird Party Advisory
- https://www.youtube.com/watch?v=k5nj7Jhwn9cThird Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-19441?
How severe is CVE-2018-19441?
How do I fix CVE-2018-19441?
Are you affected by CVE-2018-19441?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST