CVE-2026-50086
published 2026-06-12CVE-2026-50086: The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's signing key without authentication. This is an…
PriorityP261critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
EPSS
0.22%
12.6th percentile
The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's signing key without authentication. This is an instance of "CWE-306: Missing Authentication for Critical Function" and "CWE-327: Use of a Broken or Risky Cryptographic Algorithm," and has an estimated CVSS of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (7.5 High).
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| aqara | aqara_iam_sso_gateway | >= 2026-04-20 < 0 | 0 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's signing key without authentication.
ghsa_unreviewed·2026-06-12
CVE-2026-50086 [CRITICAL] CWE-327 The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's signing key without authentication.
The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's signing key without authentication. This is an instance of "CWE-306: Missing Authentication for Critical Function" and "CWE-327: Use of a Broken or Risky Cryptographic Algorithm," and has an estimated CVSS of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (7.5 High).
VulDB
Aqara IAM SSO Gateway up to 3.1/7.5 risky encryption
vuldb·2026-06-12·CVSS 10.0
CVE-2026-50086 [CRITICAL] Aqara IAM SSO Gateway up to 3.1/7.5 risky encryption
A vulnerability marked as problematic has been reported in Aqara IAM SSO Gateway up to 3.1/7.5. Affected is an unknown function. This manipulation causes risky cryptographic algorithm.
This vulnerability appears as CVE-2026-50086. The attack may be initiated remotely. There is no available exploit.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-12
Published