Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Gardyn — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting Gardyn. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Gardyn operates as an IoT plant-growing system with automated monitoring and control capabilities. Historically, the platform has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues across its web interface and mobile applications. The 10 documented CVEs reveal consistent weaknesses in input validation and access control mechanisms. While no major public security incidents have been reported, the pattern of vulnerabilities suggests potential for unauthorized device control and data breaches. The system's internet-connected nature combined with these security concerns presents risks to both user privacy and network security, particularly in environments where the device is connected to larger networks.

Top products by Gardyn: Cloud API Home Kit Firmware Home Kit Mobile Application
CVE IDTitleCVSSSeverityPublished
CVE-2025-10681 Gardyn Mobile Application and Device Firmware Use Hard-coded Credentials — Mobile ApplicationCWE-798 8.6 High2026-04-03
CVE-2026-25197 Gardyn Cloud API Authorization Bypass Through User-Controlled Key — Cloud APICWE-639 9.1 Critical2026-04-03
CVE-2026-28766 Gardyn Cloud API Missing Authentication for Critical Function — Cloud APICWE-306 9.3 Critical2026-04-03
CVE-2026-28767 Gardyn Cloud API Missing Authentication for Critical Function — Cloud APICWE-306 5.3 Medium2026-04-03
CVE-2026-32646 Gardyn Cloud API Missing Authentication for Critical Function — Cloud APICWE-306 7.5 High2026-04-03
CVE-2026-32662 Gardyn Cloud API Active Debug Code — Cloud APICWE-489 5.3 Medium2026-04-03
CVE-2025-1242 Administrative Credentials Can Be Extracted Through Gardyn API Responses — Home KitCWE-798 9.1 Critical2026-02-25
CVE-2025-29629 Gardyn 4 安全漏洞 — Home Kit FirmwareCWE-1392 9.1 Critical2025-07-25
CVE-2025-29631 Gardyn 4安全漏洞 — Home Kit FirmwareCWE-78 9.8 Critical2025-07-25
CVE-2025-29628 Gardyn 4 安全漏洞 — Home Kit FirmwareCWE-924 9.4 Critical2025-07-25

This page lists every published CVE security advisory associated with Gardyn. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.