4 matches found
CVE-2025-29660
A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP service on port 6789. This service lacks proper input validation, allowing attackers to execute arbitrary scripts present on the device by sending specially crafted TCP requests using directory...
CVE-2025-29660
A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP service on port 6789. This service lacks proper input validation, allowing attackers to execute arbitrary scripts present on the device by sending specially crafted TCP requests using directory...
CVE-2025-29660
creationtimestamp| type| source ---|---|--- 2025-04-21 15:02:51+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12669 2025-04-21 16:04:33+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114376800501667579 2025-04-21 16:13:56+00:00| seen|...
CVE-2025-29660
A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP service on port 6789. This service lacks proper input validation, allowing attackers to execute arbitrary scripts present on the device by sending specially crafted TCP requests using directory...