← Back to home
ICSA-26-183-03  ·  Published 2026-07-02  ·  View on CISA ICS-CERT ↗

Gardyn IoT Hub

CVSS 10.0 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow unauthenticated users to access and control IoT Hub managed devices.

Remediations

  • Gardyn states that IoT Hub deployed infrastructure has been updated to fix the listed vulnerabilities.
  • Gardyn requests that users ensure their devices have Internet connectivity in order to automatically download needed firmware updates. Unconnected devices will automatically update when configured with a working Internet connection. Gardyn also recommends that users update their mobile application to the most recent version. The current versions of the Gardyn App and the Gardyn Home firmware can be checked in the Gardyn App.
  • Further information on Gardyn security can be found here: https://mygardyn.com/security/
  • Further customer support can be obtained from Gardyn at: [email protected]

Affected Vendors

Gardyn

Affected Products (3)

Gardyn · Home Firmware <master.627
Gardyn · Studio Firmware <master.627
Gardyn · Cloud API <2.12.2026

Affected Sectors

Food and Agriculture

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more