CVE-2018-17178

Name of the Vulnerable Software and Affected Versions Neato Botvac Connected version 2.2.0

Description An issue allows the execution of unauthenticated manual drive commands on devices with an active session. Commands such as forward, back, arc-left, arc-right, pivot-left, and pivot-right are executed, despite the web socket replying with an "invalid authorization header" message. These commands are sent to the /bin/webserver endpoint on port 8081. Without an active session, commands are still interpreted but have no effect, except for eco-on and eco-off.

Recommendations For Neato Botvac Connected version 2.2.0, consider restricting access to the /bin/webserver endpoint on port 8081 to prevent unauthorized command execution. As a temporary workaround, restrict the use of manual drive commands until a patch is available.