Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

Aqara IAM/SSO Gateway

Source -

CNA

CNA CVEs -

3

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
3Vulnerabilities found
CVE-2026-50089
Assigner-44488dab-36db-4358-99f9-bc116477f914
ShareView Details
Assigner-44488dab-36db-4358-99f9-bc116477f914
CVSS Score-6.1||MEDIUM
EPSS-Not Assigned
Published-12 Jun, 2026 | 15:02
Updated-12 Jun, 2026 | 17:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Aqara IAM/SSO Gateway open redirect

The Aqara IAM/SSO Gateway (gw-builder.aqara.com) provides an open redirect, which is an instance of "CWE-601: URL Redirection to Untrusted Site," with an estimated CVSS of CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N (6.1 Medium), which can be used to set up a phishing attack.

Action-Not Available
Vendor-Aqara
Product-Aqara IAM/SSO Gateway
CWE ID-CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
CVE-2026-50087
Assigner-44488dab-36db-4358-99f9-bc116477f914
ShareView Details
Assigner-44488dab-36db-4358-99f9-bc116477f914
CVSS Score-8.2||HIGH
EPSS-Not Assigned
Published-12 Jun, 2026 | 15:01
Updated-12 Jun, 2026 | 17:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Aqara IAM/SSO Gateway cross-origin resource sharing

The Aqara IAM/SSO gateway (gw-builder.aqara.com) exhibits a cross-origin request sharing vulnerability, which is an instance of "CWE-942: Permissive Cross-domain Policy with Untrusted Domains," and has an estimated CVSS of CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N (8.2 High).

Action-Not Available
Vendor-Aqara
Product-Aqara IAM/SSO Gateway
CWE ID-CWE-942
Permissive Cross-domain Policy with Untrusted Domains
CVE-2026-50086
Assigner-44488dab-36db-4358-99f9-bc116477f914
ShareView Details
Assigner-44488dab-36db-4358-99f9-bc116477f914
CVSS Score-10||CRITICAL
EPSS-Not Assigned
Published-12 Jun, 2026 | 15:01
Updated-12 Jun, 2026 | 17:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Aqara unauthenticated AES oracle

The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's signing key without authentication. This is an instance of "CWE-306: Missing Authentication for Critical Function" and "CWE-327: Use of a Broken or Risky Cryptographic Algorithm," and has an estimated CVSS of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (7.5 High).

Action-Not Available
Vendor-Aqara
Product-Aqara IAM/SSO Gateway
CWE ID-CWE-327
Use of a Broken or Risky Cryptographic Algorithm