Skip to content
/ roboup-mower Public

Interesting findings from the firmware of the RoboUP Lawn Mower that I bought from Kickstarter

License

CC0-1.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

jrm16020/roboup-mower

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
adb-connect.mov
adb-connect.mov
 
 
adb-connect.png
adb-connect.png
 
 
ports.png
ports.png
 
 

Repository files navigation

Insecure Lawn Mower Ahead!

Recordings available now and in the future on Youtube to help with demonstrating the issues.

ports

If you want to know more about the lawn mower, just log in and check it out!

adb

More to come as I get more free time. The mower is running on the RV1126_RV1109 demo board from Rockchip and has lots of services running that have no clear use case.

CVEs

  • CVE-2023-43214 -- Unauthenticated remote code execution via ADB exposed to the LAN
  • CVE-2023-43215 -- Information disclosure via unauthenticated MQTT broker

About

Interesting findings from the firmware of the RoboUP Lawn Mower that I bought from Kickstarter

Resources

Readme

License

CC0-1.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published