CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/03/20 6:2 a.m.•1 views

CVE-2026-4475 Yi Technology YI Home Camera ipc hard-coded credentials

A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.120171024151200. The affected element is an unknown function of the file home/web/ipc. Such manipulation leads to hard-coded credentials. Access to the local network is required for this attack to succeed. The exploit has been...

8.8CVSS6.7AI score0.00028EPSS

ATTACKERKB•added 2026/03/20 6:2 a.m.•0 views

CVE-2026-4475

8.8CVSS5.2AI score0.00028EPSS

CVE•added 2026/03/20 6:2 a.m.•7 views

CVE-2026-4475

CVE-2026-4475 concerns Yi Technology YI Home Camera 2 (version 2.1.1_20171024151200). The vulnerability is in an unknown function within the file home/web/ipc, leading to hard-coded credentials. Access to the local network is required for exploitation. Public disclosure has occurred, and the vend...

8.8CVSS6.7AI score0.00028EPSS

Cvelist•added 2026/03/20 6:2 a.m.•20 views

CVE-2026-4475 Yi Technology YI Home Camera ipc hard-coded credentials

8.8CVSS0.00028EPSS

Positive Technologies•added 2026/03/20 12:0 a.m.•1 views

PT-2026-26640

A use of hard-coded credentials vulnerability has been reported to affect QuNetSwitch. The remote attackers can then exploit the vulnerability to gain unauthorized access. We have already fixed the vulnerability in the following version: QuNetSwitch 2.0.5.0906 and later...

8.8CVSS5.8AI score0.00196EPSS

Exploits0References5

Positive Technologies•added 2026/03/20 12:0 a.m.•4 views

PT-2026-26568

A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.1 20171024151200. The affected element is an unknown function of the file home/web/ipc. Such manipulation leads to hard-coded credentials. Access to the local network is required for this attack to succeed. The exploit has been...

8.8CVSS6.7AI score0.00028EPSS

Positive Technologies•added 2026/03/20 12:0 a.m.•1 views

PT-2026-26571

A vulnerability was determined in Yi Technology YI Home Camera 2 2.1.1 20171024151200. This affects an unknown function of the component WPA/WPS. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack can only be done within the local network. This attack is...

3.1CVSS5.2AI score0.00006EPSS

CNNVD•added 2026/03/20 12:0 a.m.•2 views

Yi Technology YI Home Camera 2 安全漏洞

The Yi Technology YI Home Camera 2 is an intelligent home camera device developed by China's Yi Technology Company. Version 2.1.120171024151200 of the Yi Technology YI Home Camera 2 contains a security vulnerability, which stems from the use of a hard-coded encryption key in the WPA/WPS component...

3.1CVSS5.8AI score0.00006EPSS

CNNVD•added 2026/03/20 12:0 a.m.•2 views

Yi Technology YI Home Camera 2 安全漏洞

The Yi Technology YI Home Camera 2 is an intelligent home camera device developed by China's Yi Technology Company. Version 2.1.120171024151200 of the Yi Technology YI Home Camera 2 contains a security vulnerability, which stems from hard-coded credentials in the home/web/ipc files...

8.8CVSS7.3AI score0.00028EPSS

EUVD•added 2026/03/19 6:31 p.m.•1 views

EUVD-2025-208881

Use of a hard-coded AES-256-CBC key in the configuration backup/restore implementation of Small Cell Sercomm SCE4255W FreedomFi Englewood firmware before DG3934v3@2308041842 allows remote authenticated users to decrypt, modify, and re-encrypt device configurations, enabling credential manipulatio...

NVD•added 2026/03/19 6:16 p.m.•1 views

CVE-2025-67112

9.8CVSS0.00152EPSS

CNNVD•added 2026/03/19 12:0 a.m.•3 views

Sercomm SCE4255W 安全漏洞

Sercomm SCE4255W is a broadband gateway device produced by Sercomm in Taiwan, China. Previous versions of Sercomm SCE4255W DG3934v3@2308041842 contained security vulnerabilities. These vulnerabilities stemmed from the use of hard-coded AES-256-CBC keys in the configuration backup/restore mechanis...

9.8CVSS5.8AI score0.00152EPSS

Positive Technologies•added 2026/03/19 12:0 a.m.•1 views

PT-2026-26317

ATTACKERKB•added 2026/03/19 12:0 a.m.•3 views

Exploits0References6

CVE-2025-67112

CNNVD•added 2026/03/19 12:0 a.m.•2 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an authentication bypass vulnerability caused by a /api/channels route classification flaw due to a mismatch in the depth of normalization between authentication path classification and route path...

8.3CVSS5.8AI score0.00074EPSS

Exploits0References6

Vulnrichment•added 2026/03/19 12:0 a.m.•1 views

CVE-2025-67112

CVE•added 2026/03/19 12:0 a.m.•3 views

CVE-2025-67112

The CVE-2025-67112 entry concerns the Small Cell Sercomm SCE4255W (FreedomFi Englewood) firmware prior to DG3934v3@2308041842, where a hard-coded AES-256-CBC key in the configuration backup/restore flow allows remote authenticated users to decrypt, modify, and re-encrypt device configurations. Th...

9.8CVSS5.8AI score0.00152EPSS

Cvelist•added 2026/03/19 12:0 a.m.•18 views

CVE-2025-67112

0.00152EPSS