CVE-2025-56400

EPSS 0.03%
Veröffentlicht 24.11.2025 00:00:00
Zuletzt bearbeitet 30.12.2025 17:51:20
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Cross-Site Request Forgery (CSRF) vulnerability in the OAuth implementation of the Tuya SDK 6.5.0 for Android and iOS, affects the Tuya Smart and Smartlife mobile applications, as well as other third-party applications that integrate the SDK, allows an attacker to link their own Amazon Alexa account to a victim's Tuya account. The applications fail to validate the OAuth state parameter during the account linking flow, enabling a cross-site request forgery (CSRF)-like attack. By tricking the victim into clicking a crafted authorization link, an attacker can complete the OAuth flow on the victim's behalf, resulting in unauthorized Alexa access to the victim's Tuya-connected devices. This affects users regardless of prior Alexa linkage and does not require the Tuya application to be active at the time. Successful exploitation may allow remote control of devices such as cameras, doorbells, door locks, or alarms.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Tuya ≫ Smartlife Version6.3.1 SwPlatformiphone_os

Tuya ≫ Smartlife Version6.3.4 SwPlatformandroid

Tuya ≫ Tuya SwPlatformandroid Version < 6.5.0

Tuya ≫ Tuya SwPlatformiphone_os Version < 6.5.0

Tuya ≫ Tuya Smart Version6.3.1 SwPlatformandroid

Tuya ≫ Tuya Smart Version6.3.1 SwPlatformiphone_os

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.062

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

CWE-384 Session Fixation

Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.

http://tuya.com

Broken Link

https://src.tuya.com/announcement/30

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-56400

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-56400

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-56400

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-56400