CVE-2025-1242

Name of the Vulnerable Software and Affected Versions Gardyn IoT Hub (affected versions not specified)

Description Administrative credentials can be extracted through application API responses, mobile application reverse engineering, and device firmware reverse engineering. This exposure may allow an attacker to gain full administrative access to the Gardyn IoT Hub, potentially exposing connected devices to malicious control. The vulnerability allows an attacker to extract administrative credentials via multiple attack vectors.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.