CVE-2025-65826

Name of the Vulnerable Software and Affected Versions Mobile application (affected versions not specified)

Description The mobile application stores network credentials. An attacker retrieving these credentials, along with the physical location of the Wi-Fi network, could gain unauthorized access to the vendor's Wi-Fi network. If an attacker is in close physical proximity during device setup, they may be able to force the device to auto-connect to an attacker-controlled access point by setting the SSID and password to match those found in the firmware file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.