EUVD-2025-29640

Malicious code in bioql PyPI...

CVE-2025-56557

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol...

CVE-2025-56557

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol...

CVE-2025-56557

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol...

Tuya Smart Life App 安全漏洞

Tuya Smart Life App is a smart home control app from Chinese company Tuya Tuya. A security vulnerability exists in Tuya Smart Life App version 5.6.1, which originates from an attacker being able to control the device without privileges via the Matter protocol...

CVE-2025-56557

CVE-2025-56557 describes a vulnerability in Tuya Smart Life App version 5.6.1 that allows an attacker to unprivilegedly control Matter devices using the Matter protocol. The NVD entry lists a CVSS v3.1 base score of 9.1 (CRITICAL) with network attack vector, no user interaction required, and impa...

CVE-2025-56557

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol...

CVE-2025-56557

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol...

PT-2025-38065

Name of the Vulnerable Software and Affected Versions: Tuya Smart Life App versions 5.6.1 Description: An issue discovered in the Tuya Smart Life App allows attackers to gain unprivileged control of Matter devices via the Matter protocol. Recommendations: Update to a newer version of the Tuya Sma...

Command Execution Vulnerability in SenseLink Intelligent Internet of Things Platform of Shanghai Shangtang Intelligent Technology Co.

Shanghai Shangtang Intelligent Technology Co., Ltd. currently covers four business segments: Smart Business, Smart City, Smart Life, and Smart Car. Shanghai Shangtang Intelligent Technology Co., Ltd. SenseLink Intelligent Internet of Things platform has a command execution vulnerability that can ...

CVE-2021-20732

CVE-2021-20732 concerns the ATOM - Smart life App (Android v1. unaffected; affected are Android versions prior to 1.8.1 and iOS prior to 1.8.2) lacking proper server certificate verification (CWE-295). The issue enables a man-in-the-middle attacker to eavesdrop on encrypted traffic through a craf...

CVE-2021-20732

The ATOM ATOM - Smart life App for Android versions prior to 1.8.1 and ATOM - Smart life App for iOS versions prior to 1.8.2 does not verify server certificate properly, which allows man-in-the-middle attackers to eavesdrop on encrypted communication via a crafted certificate...

ATOM - Smart life App vulnerable to improper server certificate verification

Overview ATOM - Smart life App provided by ATOM tech Inc. is vulnerable to improper server certificate verification CWE-295. Yuji Tounai of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

ATOM-Smart life App 信任管理问题漏洞

ATOM tech ATOM-Smart life App is a smart life application from ATOM tech, Japan. ATOM-Smart life App 1.8.0 suffers from a trust management issue vulnerability that originates from improper server certificate validation. A remote attacker can exploit this vulnerability to conduct a MitM attack on...

Information leakage vulnerability in C&D Smart Life APP

C&D Smart Life APP is a real estate information service software. There is an information leakage vulnerability in C&D Huilife APP, which can be exploited by attackers to obtain users' sensitive information...