CNNVD-202510-1591 Information
CNNVD ID
CNNVD-202510-1591
Related CVE
- CNNVD Published: 2025-10-12
Description (Chinese)
Tomofun Furbo 360和Tomofun Furbo Mini都是中国台湾Tomofun公司的一款智能宠物摄像机。 Tomofun Furbo 360 FB0035_FW_036及之前版本和Tomofun Furbo Mini MC0020_FW_074及之前版本存在访问控制错误漏洞,该漏洞源于GATT Service组件访问控制不当,可能导致本地网络攻击。
Description (English)
Tomofun Furbo 360 and Tomofun Furbo Mini are smart pet cameras from Tomofun, Taiwan, China. Tomofun Furbo 360 FB0035 FW 036 et seq. and Tomofun Furbo Mini MC0020 FW 074 et al. have access control bugs, which stem from inappropriate access controls of the GATT Service component and may lead to local cyber attacks.
Hazard Level
High
Vulnerability Type
访问控制错误
Affected Vendor
Tomofun
Published
2025-10-12
Last Modified
2026-02-24
References
https://vuldb.com/?id.328057 https://vuldb.com/?ctiid.328057 https://github.com/dead1nfluence/Furbo-Advisories/blob/main/Information-Disclosure-P2PUUID.md https://vuldb.com/?submit.661900 https://access.redhat.com/security/cve/cve-2025-11646
Share on: