Nedis SmartLife Android App API Key Disclosure Vulnerability

Vulnerability

An API key disclosure vulnerability has been identified in the Nedis SmartLife Android application, specifically in version 1.4.0. This vulnerability allows for the unintentional exposure of sensitive API keys, which could potentially be exploited inappropriately.

Impact

The vulnerability leads to the unauthorized disclosure of API keys, which could be misused to access or manipulate resources or services that the API keys are intended to control.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.4

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.4

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nedis SmartLife Android App API Key Disclosure Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating