Assessment: absence of signature verification or secure boot is a high-risk finding — updates delivered over plain HTTP or via unsigned USB images can be abused for supply-chain attacks.

End of document.