CVE-2025-56557

Critical CVSS: 9.1

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol.

Vendor

Product

CWE

Yayın Tarihi

2025-09-16 19:15:41

Güncelleme

2025-10-02 19:13:02

Source Identifier

cve@mitre.org

KEV Date Added

CWE-250 Tuya CRITICAL Tuya 2025

http://tuya.com https://archive.org/details/tuya-matter-fabric-bug/mode/2up

High

CVE-2026-28519

arduino-TuyaOpen before version 1.2.1 contains a heap-based buffer overflow vulnerability in the DnsServer component. An…

High

CVE-2026-28520

arduino-TuyaOpen before version 1.2.1 contains a single-byte buffer overflow vulnerability in the WiFiMulti component. W…

High

CVE-2026-28521

arduino-TuyaOpen before version 1.2.1 contains an out-of-bounds memory read vulnerability in the TuyaIoT component. An a…

High

CVE-2026-28522

arduino-TuyaOpen before version 1.2.1 contains a null pointer dereference vulnerability in the WiFiUDP component. An att…

High

CVE-2025-56400

Cross-Site Request Forgery (CSRF) vulnerability in the OAuth implementation of the Tuya SDK 6.5.0 for Android and iOS, a…