Home

Description

Smart Video Doorbell firmware versions prior to 2.01.078 contain an active debug code vulnerability that allows an attacker to connect via Telnet and gain access to the device.

PUBLISHED Reserved 2025-11-11 | Published 2025-11-26 | Updated 2025-11-26 | Assigner jpcert




HIGH: 8.0CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

HIGH: 8.6CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Active debug code

Product status

prior to 2.01.078
affected

References

www.switch-bot.com/...59qB8ti2fDP0vCOzxX33NGlpJ8yDlZnzC3vJ_f

jvn.jp/en/jp/JVN67185535

cve.org (CVE-2025-64983)

nvd.nist.gov (CVE-2025-64983)

Download JSON