CVE-2025-34500 — Deck Mate 2's firmware update mechanism accepts packages without cryptographic signature verification, encrypts them with a single hard-coded AES key shared across devices, and uses a truncated HM — CVE Database · The Intelligence Room