Cleartext Storage of Sensitive Information
CVE-2025-59450
Summary
The YoSmart YoLink Smart Hub firmware 0382 is unencrypted, and data extracted from it can be used to determine network access credentials.
- LOW
- LOCAL
- NONE
- CHANGED
- NONE
- NONE
- LOW
- NONE
CWE-312 - Cleartext Storage of Sensitive Information
The application stores sensitive information in cleartext within a resource that might be accessible to another control sphere.
References
Advisory Timeline
- Published
