Description
The Aqara IAM/SSO Gateway (gw-builder.aqara.com) provides an open redirect, which is an instance of "CWE-601: URL Redirection to Untrusted Site," with an estimated CVSS of CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N (6.1 Medium), which can be used to set up a phishing attack.
Published: 2026-06-12
Score: 6.1 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Aqara IAM/SSO Gateway at gw-builder.aqara.com has an open redirect flaw categorized as CWE-601, allowing an attacker to redirect users to arbitrary URLs. This can be exploited to conduct phishing attacks by masquerading legitimate traffic and tricking users into divulging credentials or other sensitive information.

Affected Systems

The vulnerability affects the Aqara IAM/SSO Gateway product. No specific version numbers are published in the advisory.

Risk and Exploitability

With a CVSS score of 6.1, this flaw poses a medium risk. The EPSS score is currently unavailable, and the vulnerability is not listed in the CISA KEV catalog. Attackers would typically conduct the exploit by luring a victim to click a crafted URL that first passes through the gateway's redirect endpoint, then leads to a malicious site.

Generated by OpenCVE AI on June 12, 2026 at 16:36 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest vendor patch or upgrade the Aqara IAM/SSO Gateway to a version that includes the fix for the open redirect flaw.
  • Configure a web application firewall or proxy to block or filter requests to the redirect endpoint and reject untrusted target URLs.
  • Educate users on phishing risks and instruct them to verify the destination URLs before clicking.

Generated by OpenCVE AI on June 12, 2026 at 16:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 12 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Aqara
Aqara aqara Iam/sso Gateway
Vendors & Products Aqara
Aqara aqara Iam/sso Gateway

Fri, 12 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 12 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
Description The Aqara IAM/SSO Gateway (gw-builder.aqara.com) provides an open redirect, which is an instance of "CWE-601: URL Redirection to Untrusted Site," with an estimated CVSS of CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N (6.1 Medium), which can be used to set up a phishing attack.
Title Aqara IAM/SSO Gateway open redirect
Weaknesses CWE-601
References
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

Subscriptions

Aqara Aqara Iam/sso Gateway
cve-icon MITRE

Status: PUBLISHED

Assigner: runZero

Published:

Updated: 2026-06-12T15:50:31.374Z

Reserved: 2026-06-03T14:25:34.982Z

Link: CVE-2026-50089

cve-icon Vulnrichment

Updated: 2026-06-12T15:50:26.443Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-12T16:16:32.513

Modified: 2026-06-12T17:16:26.050

Link: CVE-2026-50089

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-12T20:19:41Z

Weaknesses
  • CWE-601

    URL Redirection to Untrusted Site ('Open Redirect')