CVE-2025-32878

Published: Jun 20, 2025

Modified: Jun 20, 2025

PUBLISHED

Description

An issue was discovered on COROS PACE 3 devices through 3.0808.0. It implements a function to connect the watch to a WLAN. This function is mainly for downloading firmware files. Before downloading firmware files, the watch requests some information about the firmware via HTTPS from the back-end API. However, the X.509 server certificate within the TLS handshake is not validated by the device. This allows an attacker within an active machine-in-the-middle position, using a TLS proxy and a self-signed certificate, to eavesdrop and manipulate the HTTPS communication. This could be abused, for example, for stealing the API access token of the assigned user account.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://syss.de

https://support.coros.com/hc/en-us/articles/20087694119828-COROS-PACE-3-Release-Notes

https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2025-030.txt

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-32878

Description

Affected Products

References