CVE-2025-XXXX — V360 Pro: Hard-coded AES keys & sensitive data exposure

Vendor: Shenzhen Qianniao Xiangyun Technology Co., Ltd. • Product: V360 Pro (com.dayunlinks.cloudbirds)

Status: This CVE is under coordinated disclosure. A CVE ID has been requested and assigned as a placeholder here. Full advisory will be published on or before 2025-11-25 (or sooner if a vendor fix is released).

Affected versions (summary): Android ≤ 6.5.4; iOS/macOS ≤ 6.5.7.

Contact for coordination: security@nlr.cx (PGP: /pgp.txt)

Once public, this page will include technical details, CVSS, timeline, and remediation guidance.

← Back to advisories