Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary can dump the flash from the device and retrieve sensitive information such as details about the current and previous Wi-Fi network from the NVS partition. Additionally, this allows the adversary to reflash the device with their own firmware which may contain malicious modifications.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Meatmeet Pro BBQ Thermometer 安全漏洞
Vulnerability Description
Meatmeet Pro BBQ Thermometer是Meatmeet公司的一款高级智能温度计。 Meatmeet Pro BBQ Thermometer存在安全漏洞,该漏洞源于UART下载模式未禁用,可能导致敏感信息泄露和恶意固件刷入。
CVSS Information
N/A
Vulnerability Type
N/A