Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 fail to validate server certificates during HTTPS firmware downloads, allowing man-in-the-middle attackers to intercept firmware update traffic and potentially serve modified firmware files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Aqara Camera Hub G3 安全漏洞
Vulnerability Description
Aqara Camera Hub G3是美国Aqara公司的一个智能监控摄像机。 Aqara Camera Hub G3 4.1.9_0027版本、Hub M2 4.3.6_0027版本和Hub M3 4.3.6_0025版本存在安全漏洞,该漏洞源于HTTPS固件下载期间未验证服务器证书,可能导致中间人攻击。
CVSS Information
N/A
Vulnerability Type
N/A