CVE-2025-64983

HIGH

Smart Video Doorbell <2.01.078 - RCE

Title source: llm

Description

Smart Video Doorbell firmware versions prior to 2.01.078 contain an active debug code vulnerability that allows an attacker to connect via Telnet and gain access to the device.

References (2)

[Various Sources] https://www.switch-bot.com/products/switchbot-video-doorbell?srsltid=AfmBOooGEZArqUag9p59qB8ti2fDP0vCOzxX33NGlpJ8yDlZnzC3vJ_f

[Third Party Advisory] https://jvn.jp/en/jp/JVN67185535

Scores

CVSS v3 8.0

EPSS 0.0002

EPSS Percentile 4.6%

Attack Vector ADJACENT_NETWORK

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-489

Status published

Products (1)

SwitchBot/Smart Video Doorbell prior to 2.01.078

Published Nov 26, 2025

Tracked Since Feb 18, 2026