0-Click Rootkit Vulnerability Discovered in SuperNote
2025-04-10
Security researchers at PRIZM Labs discovered a critical 0-click rootkit vulnerability in the SuperNote e-ink note-taking device. Attackers could exploit unauthenticated file sharing on port 60002, leveraging a path traversal vulnerability and the firmware update mechanism to remotely install a rootkit without user interaction, achieving full device compromise. The vulnerability stems from an open port and several misconfigurations within the device's firmware. PRIZM Labs responsibly disclosed the vulnerability to the vendor, which has since been assigned CVE-2025-32409.
Tech
remote attack