Tomofun · Furbo Mini · CVE-2025-11633
**Name of the Vulnerable Software and Affected Versions**
Tomofun Furbo 360 versions prior to FB0035 FW 036
Tomofun Furbo Mini versions prior to MC0020 FW 074
**Description**
A flaw exists in the HTTP Traffic Handler component of Tomofun Furbo 360 and Furbo Mini. This issue results in improper certificate validation and can be exploited remotely. Exploitation is considered difficult and requires high complexity.
**Recommendations**
Update Furbo 360 to a version later than FB0035 FW 036.
Update Furbo Mini to a version later than MC0020 FW 074.