CVE advisoryCRITICAL
CVE-2024-48539
Neye3C Firmware Update Hardcoded Key Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A hardcoded encryption key in the Neye3C firmware update mechanism could allow an attacker to decrypt sensitive information and potentially gain unauthorized access or control of the device. This vulnerability is reachable over a network.