Medium severity5.1NVD Advisory· Published Jul 29, 2025· Updated Apr 15, 2026

CVE-2025-53649

Description

"SwitchBot" App for iOS/Android contains an insertion of sensitive information into log file vulnerability in versions V6.24 through V9.12. If this vulnerability is exploited, sensitive user information may be exposed to an attacker who has access to the application logs.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/jp/JVN59585716/nvd
www.switchbot.jp/pages/switchbot-app-vulnerability-fix202507nvd

News mentions

No linked articles in our index yet.

cvss	0.332
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000