CVE-2025-65295 — HIGH (8.1)

Vulnerability Description

Multiple vulnerabilities in Aqara Hub firmware update process in the Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 devices, allow attackers to install malicious firmware without proper verification. The device fails to validate firmware signatures during updates, uses outdated cryptographic methods that can be exploited to forge valid signatures, and exposes information through improperly initialized memory.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Aqara	Hub M2 Firmware	4.3.6_0027
Aqara	Hub M2	-
Aqara	Hub M3 Firmware	4.3.6_0025
Aqara	Hub M3	-
Aqara	Camera Hub G3 Firmware	4.1.9_0027
Aqara	Camera Hub G3	-

Related Weaknesses (CWE)

CWE-347 CWE-326 CWE-457

References

https://github.com/Chapoly1305/myCVEReports/blob/main/Aqara/OTA-Firmware-InsecurExploitThird Party Advisory

FAQ

What is CVE-2025-65295?

CVE-2025-65295 is a vulnerability with a CVSS score of 8.1 (HIGH). Multiple vulnerabilities in Aqara Hub firmware update process in the Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 devices, allow attackers to install malicious firmware without p...

How severe is CVE-2025-65295?

CVE-2025-65295 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-65295?

Check the references section above for vendor advisories and patch information. Affected products include: Aqara Hub M2 Firmware, Aqara Hub M2, Aqara Hub M3 Firmware, Aqara Hub M3, Aqara Camera Hub G3 Firmware.