CNNVD-202507-3399 Information

CNNVD ID

CNNVD-202507-3399

Related CVE

CVE-2025-8210

• CNNVD Published: 2025-07-26

Description (Chinese)

Yeelight App是中国Yeelight公司的一款用于控制智能照明产品的应用程序。 Yeelight App 3.5.4及之前版本存在安全漏洞，该漏洞源于文件AndroidManifest.xml导致安卓组件导出不当。

Description (English)

Yeelight App is an application by Yeelight China for the control of smart lighting products. The security gap in Yeelight App 3.5.4 and earlier versions stems from the inappropriate export of the Android Component in document Android Manifest.xml.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Yeelight

Published

2025-07-26

Last Modified

2026-02-24

References

https://github.com/KMov-g/androidapps/blob/main/com.yeelight.cherry.md https://vuldb.com/?submit.615779 https://vuldb.com/?id.317778 https://vuldb.com/?ctiid.317778 https://nvd.nist.gov/vuln/detail/CVE-2025-8210 https://access.redhat.com/security/cve/cve-2025-8210