A vulnerability classified as critical has been found in Yarbo App and Cloud MQTT infrastructure . This vulnerability affects unknown code of the component Subscription Handler . Performing a manipulation results in hard-coded credentials. This vulnerability was named CVE-2026-10557 . The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.