216.73.217.80

CVE-2026-50085

· Published 12/06/2026 18:16 · Modified 12/06/2026 17:16 · Author: The MITRE Corporation

Labels: CVE-2026-50085 2026-06-1244488dab-36db-4358-99f9-bc116477f914CVE-2026-50085CWE-306

Essential information

Published
12/06/2026 18:16
Modified
12/06/2026 17:16
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
8.6 HIGH (v3.1)
CISA KEV
No
CWE
CWE-306
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L

CVSS metrics

Description

The Aqara Board service (op-test.aqara.com) accepts arbitrary MQTT command payloads, and forwards them to the platfom's HiveMQ broker without authentication. This is an instance of "CWE-306: Missing Authentication for Critical Function" and has an estimated CVSS ofCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L (8.6 High). When combined with CVE-2026-50082, CVE-50083, and CVE-50084, this can lead to a fully unauthenticated, remote takeover of affected devices.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
44488dab-36db-4358-99f9-bc116477f914
NVD
View on NVD

Affected products (CPE)

ProductCPE
aqara / board service cpe:2.3:a:aqara:board_service:*:*:*:*:*:*:*:*

References