PT-2025-41730 · Tomofun · Tomofun Furbo Mini+1
Calvin Star
+2
·
Published
2025-10-12
·
Updated
2025-10-12
·
CVE-2025-11642
CVSS v4.0
4.1
Medium
| Vector | AV:P/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
Tomofun Furbo 360 versions prior to FB0035 FW 036
Tomofun Furbo Mini versions prior to MC0020 FW 074
Description
A flaw exists in the Registration Handler component of Tomofun Furbo 360 and Furbo Mini devices. This issue can lead to a denial of service. The attack requires direct access to the physical device and is considered difficult to exploit due to its high complexity. The vulnerability resides within an unknown
function of the Registration Handler component.Recommendations
Update Tomofun Furbo 360 to a firmware version later than FB0035 FW 036.
Update Tomofun Furbo Mini to a firmware version later than MC0020 FW 074.
Fix
DoS
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tomofun Furbo 360
Tomofun Furbo Mini