CVE-2025-65293

Command injection vulnerabilities in Aqara Camera Hub G3 4.1.9_0027 allow attackers to execute arbitrary commands with root privileges through malicious QR codes during device setup and factory reset.

More information : https://github.com/Chapoly1305/myCVEReports/blob/main/Aqara/QR-Command-Injection.md