Hard-coded Credentials in CoolKit eWeLlink app are prior to 5.4.x on Android and IOS allows local malicious user to unauthorized access to sensitive data via Decryption algorithm and key obtained after decompiling app