CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/03/20 9:32 a.m.•3 views

EUVD-2026-13600

A vulnerability was determined in Yi Technology YI Home Camera 2 2.1.120171024151200. This affects an unknown function of the component WPA/WPS. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack can only be done within the local network. This attack is...

3.1CVSS5.2AI score0.00006EPSS

EUVD•added 2026/03/20 9:32 a.m.•2 views

EUVD-2026-13598

A vulnerability was found in Yi Technology YI Home Camera 2 2.1.120171024151200. The impacted element is an unknown function of the file home/web/ipc of the component CGI Endpoint. Performing a manipulation results in missing authentication. Access to the local network is required for this attack...

6.3CVSS6AI score0.0001EPSS

NVD•added 2026/03/20 7:16 a.m.•1 views

CVE-2026-4477

3.1CVSS0.00006EPSS

NVD•added 2026/03/20 7:16 a.m.•1 views

CVE-2026-4478

A vulnerability was identified in Yi Technology YI Home Camera 2 2.1.120171024151200. This impacts an unknown function of the file home/web/ipc of the component HTTP Firmware Update Handler. The manipulation leads to improper verification of cryptographic signature. The attack is possible to be...

9.2CVSS0.00006EPSS

ATTACKERKB•added 2026/03/20 7:2 a.m.•1 views

CVE-2026-4477

3.1CVSS5.2AI score0.00006EPSS

Cvelist•added 2026/03/20 7:2 a.m.•19 views

CVE-2026-4477 Yi Technology YI Home Camera WPA/WPS hard-coded key

3.1CVSS0.00006EPSS

Cvelist•added 2026/03/20 6:32 a.m.•19 views

CVE-2026-4476 Yi Technology YI Home Camera CGI Endpoint ipc missing authentication

6.3CVSS0.0001EPSS

Vulnrichment•added 2026/03/20 6:32 a.m.•3 views

CVE-2026-4476 Yi Technology YI Home Camera CGI Endpoint ipc missing authentication

6.3CVSS6AI score0.0001EPSS

Vulnrichment•added 2026/03/20 6:2 a.m.•1 views

CVE-2026-4475 Yi Technology YI Home Camera ipc hard-coded credentials

8.8CVSS6.7AI score0.00028EPSS

Cvelist•added 2026/03/20 6:2 a.m.•20 views

CVE-2026-4475 Yi Technology YI Home Camera ipc hard-coded credentials

8.8CVSS0.00028EPSS

Positive Technologies•added 2026/03/20 12:0 a.m.•3 views

PT-2026-26569

A vulnerability was found in Yi Technology YI Home Camera 2 2.1.1 20171024151200. The impacted element is an unknown function of the file home/web/ipc of the component CGI Endpoint. Performing a manipulation results in missing authentication. Access to the local network is required for this attac...

6.3CVSS6AI score0.0001EPSS

Check Point Advisories•added 2018/11/27 12:0 a.m.•2 views

Yi Technology Home Camera CRCDec Denial Of Service (CVE-2018-3935)

A denial of service vulnerability exists in the Yi Home Camera. Successful exploitation of this vulnerability could allow a remote attacker to allocate unlimited memory, resulting in denial of service...

5CVSS3.7AI score0.00736EPSS

Check Point Advisories•added 2018/11/14 12:0 a.m.•1 views

Yi Technology Home Camera 27US Denial Of Service (CVE-2018-3928)

A denial of service vulnerability exists in the firmware update functionality of Yi Home Camera. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system, creating a denial of service condition...

5CVSS5.1AI score0.00913EPSS

Check Point Advisories•added 2018/11/06 12:0 a.m.•4 views

Yi Technology Home Camera Time Sync Code Execution (CVE-2018-3892)

A remote code execution exists in the time syncing functionality of Yi Home Camera. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS4.5AI score0.01524EPSS

Talos Blog•added 2018/10/31 1:18 p.m.•103 views

Vulnerability Spotlight: Multiple Vulnerabilities in Yi Technology Home Camera

Vulnerabilities Discovered by Lilith xx of Cisco Talos. Overview Cisco Talos is disclosing multiple vulnerabilities in the firmware of the Yi Technology Home Camera. In order to prevent the exploitation of these vulnerabilities, Talos worked with Yi Technology to make sure a newer version of the...

7.5CVSS0.3AI score0.01613EPSS

Exploits9

Talos•added 2018/10/31 12:0 a.m.•506 views

Yi Technology Home Camera 27US CRCDec denial-of-service vulnerability

Summary An exploitable code execution vulnerability exists in the UDP network functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted set of UDP packets can allocate unlimited memory, resulting in denial of service. An attacker can send a set of packets to trigger this vulnerability...

7.5CVSS7.8AI score0.00736EPSS

Talos•added 2018/10/31 12:0 a.m.•511 views

Yi Technology Home Camera 27US nonce reuse authentication bypass vulnerability

Summary An exploitable code execution vulnerability exists in the firmware update functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted set of UDP packets can cause a logic flaw, resulting in an authentication bypass. An attacker can sniff network traffic and send a set of packets to...

9.8CVSS9.4AI score0.01613EPSS

Talos•added 2018/10/31 12:0 a.m.•510 views

Yi Technology Home Camera 27US notice_to denial-of-service vulnerability

Summary An exploitable code execution vulnerability exists in the firmware update functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted set of UDP packets can cause a settings change, resulting in denial of service. An attacker can send a set of packets to trigger this vulnerability...

7.5CVSS7.6AI score0.00913EPSS

Talos•added 2018/10/31 12:0 a.m.•521 views

Yi Technology Home Camera 27US QR Code trans_info Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the QR code scanning functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted QR Code can cause a buffer overflow, resulting in code execution. An attacker can make the camera scan a QR code to trigger this vulnerability...

8.3CVSS8.1AI score0.01099EPSS