The Azure Blob Storage container used for Gardyn device logs is publicly listable without authentication. A malicious user would be able to access any device log file available in the blob storage container.
Metrics
Affected Vendors & Products
References
History
Fri, 03 Jul 2026 00:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | The Azure Blob Storage container used for Gardyn device logs is publicly listable without authentication. A malicious user would be able to access any device log file available in the blob storage container. | |
| Title | Gardyn IoT Hub Exposure of Sensitive System Information to an Unauthorized Control Sphere | |
| Weaknesses | CWE-497 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: icscert
Published:
Updated: 2026-07-02T23:49:11.192Z
Reserved: 2026-06-22T15:47:37.778Z
Link: CVE-2026-55726
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-03T17:45:05Z