CVE-2025-29630 - Vulnerability Details

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue; there is no indication that an applicable SSH private key has ever been compromised. Notes: none.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2025-22715	An issue in Gardyn 4 allows a remote attacker with the corresponding ssh private key can gain remote root access to affected devices

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

No reference.

History

Fri, 03 Apr 2026 20:15:00 +0000

Type	Values Removed	Values Added
Description	Gardyn Home Kit Firmware allows a remote attacker with the corresponding ssh private key to achieve remote root access.	DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue; there is no indication that an applicable SSH private key has ever been compromised. Notes: none.
Weaknesses	CWE-284 CWE-321
References	https://github.com/kristof-mattei/gardyn-hack/blob/main/CVE-2025-29630.md https://github.com/mselbrede/gardyn/blob/main/CVE-2025-29630.md
Metrics	cvssV3_1 `{'score': 6.6, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 03 Apr 2026 19:00:00 +0000

Type	Values Removed	Values Added
References		https://github.com/kristof-mattei/gardyn-hack/blob/main/CVE-2025-29630.md

Wed, 25 Feb 2026 21:30:00 +0000

Type	Values Removed	Values Added
References	http://gardyn.com

Wed, 25 Feb 2026 20:30:00 +0000

Type	Values Removed	Values Added
Description	An issue in Gardyn 4 allows a remote attacker with the corresponding ssh private key can gain remote root access to affected devices	Gardyn Home Kit Firmware allows a remote attacker with the corresponding ssh private key to achieve remote root access.
Weaknesses		CWE-321
Metrics	cvssV3_1 `{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N'}`	cvssV3_1 `{'score': 6.6, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H'}`

Fri, 25 Jul 2025 21:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-284
Metrics		cvssV3_1 `{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 25 Jul 2025 16:30:00 +0000

Type	Values Removed	Values Added
Description		An issue in Gardyn 4 allows a remote attacker with the corresponding ssh private key can gain remote root access to affected devices
References		http://gardyn.com https://github.com/mselbrede/gardyn/blob/main/CVE-2025-29630.md

Projects

Sign in to view the affected projects.

MITRE

Status: REJECTED

Assigner: mitre

Published: 2025-07-25T00:00:00.000Z

Updated: 2026-04-03T19:31:39.022Z

Reserved: 2025-03-11T00:00:00.000Z

Link: CVE-2025-29630

Vulnrichment

Updated:

NVD

Status : Rejected

Published: 2025-07-25T17:15:31.347

Modified: 2026-04-03T20:16:02.050

Link: CVE-2025-29630

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Metrics

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object