Security Announcement – Product Server-Side Security Update Notification
Vulnerability Overview
- OS command injection due to insufficient validation of Wi‑Fi configuration parameters.
- OS command injection due to insufficient validation of Wi‑Fi configuration parameters.
Version and Fix Details
|
Affected Product
|
Fixed Version
|
|
DEEBOT X8 PRO OMNI
|
v1.130.0
|
Version Access
Devices that support automatic updates will receive system update notifications. We have proactively pushed the update to all active users. Users can complete the fix by performing the system update.
FAQs
None.
Security Incident Response
ECOVACS is committed to ensuring the best interests of our product users. We adhere to responsible disclosure principles and address security issues through our product security management process.
To report security issues related to ECOVACS products and solutions, please contact us at: product-security@ecovacs.com.ECOVACS will continue to monitor developments related to this vulnerability. Ongoing investigations are still in progress. If there are any changes, this advisory will be updated promptly. Please stay tuned for further updates.