Smartlife
1 CVEs
product
Monthly
Cross-Site Request Forgery (CSRF) vulnerability in the OAuth implementation of the Tuya SDK 6.5.0 for Android and iOS, affects the Tuya Smart and Smartlife mobile applications, as well as other. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Google
CSRF
Smartlife
Tuya
Tuya Smart
+1
NVD
CVSS 3.1
8.8
EPSS
0.0%
CVE-2025-56400
EPSS 0%
CVSS 8.8
HIGH
This Week
Cross-Site Request Forgery (CSRF) vulnerability in the OAuth implementation of the Tuya SDK 6.5.0 for Android and iOS, affects the Tuya Smart and Smartlife mobile applications, as well as other. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Google
CSRF
Smartlife
+3
NVD