CVE-2025-69822
HIGHAtomberg Erica Smart Fan Firmware V1.0.36 - Exposure of Sensitive Information via Crafted Deauth Frame
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2025-69822. PoCs published by CipherX1802.
AI-analyzed exploit summary The repository claims to document a PoC for CVE-2025-69822 but only provides a vague description and references an attached PDF not included in the repo. No actual exploit code or technical details are present.
Description
An issue in Atomberg Atomberg Erica Smart Fan Firmware Version: V1.0.36 allows an attacker to obtain sensitive information and escalate privileges via a crafted deauth frame
Exploits (1)
nomisec
SUSPICIOUS
by CipherX1802 · poc
https://github.com/CipherX1802/CVE-2025-69822-Atomberg_Erica_SmatFan_Security_Assessment
The repository claims to document a PoC for CVE-2025-69822 but only provides a vague description and references an attached PDF not included in the repo. No actual exploit code or technical details are present.
Classification
Suspicious 90%
Attack Type
Dos
Complexity
Theoretical
Reliability
Theoretical
Target:
Atomberg Erica Smart Fan (Firmware Version 1.0.36)
No auth needed
Prerequisites:
Access to the same network as the target device
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026
Full analysis →
References (2)
Core 2
Core References
Scores
CVSS v3
7.4
EPSS
0.0034
EPSS Percentile
25.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-200
CWE-284
CWE-294
CWE-287
Status
published
Products (1)
atomberg/erica_smart_fan_firmware
1.0.36
Published
Jan 22, 2026
Tracked Since
Feb 18, 2026