CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/03/20 9:32 a.m.•4 views

EUVD-2026-13591

A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.120171024151200. The affected element is an unknown function of the file home/web/ipc. Such manipulation leads to hard-coded credentials. Access to the local network is required for this attack to succeed. The exploit has been...

8.8CVSS6.7AI score0.00299EPSS

EUVD•added 2026/03/20 9:32 a.m.•5 views

EUVD-2026-13600

A vulnerability was determined in Yi Technology YI Home Camera 2 2.1.120171024151200. This affects an unknown function of the component WPA/WPS. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack can only be done within the local network. This attack is...

3.1CVSS5.2AI score0.00219EPSS

NVD•added 2026/03/20 7:16 a.m.•4 views

CVE-2026-4477

3.1CVSS0.00219EPSS

NVD•added 2026/03/20 7:16 a.m.•4 views

CVE-2026-4478

A vulnerability was identified in Yi Technology YI Home Camera 2 2.1.120171024151200. This impacts an unknown function of the file home/web/ipc of the component HTTP Firmware Update Handler. The manipulation leads to improper verification of cryptographic signature. The attack is possible to be...

9.2CVSS0.00272EPSS

Cvelist•added 2026/03/20 7:2 a.m.•23 views

CVE-2026-4477 Yi Technology YI Home Camera WPA/WPS hard-coded key

3.1CVSS0.00219EPSS

ATTACKERKB•added 2026/03/20 7:2 a.m.•2 views

CVE-2026-4477

3.1CVSS5.2AI score0.00219EPSS

Vulnrichment•added 2026/03/20 6:32 a.m.•3 views

CVE-2026-4476 Yi Technology YI Home Camera CGI Endpoint ipc missing authentication

6.3CVSS6AI score0.00316EPSS

Cvelist•added 2026/03/20 6:32 a.m.•22 views

CVE-2026-4476 Yi Technology YI Home Camera CGI Endpoint ipc missing authentication

6.3CVSS0.00316EPSS

Cvelist•added 2026/03/20 6:2 a.m.•23 views

CVE-2026-4475 Yi Technology YI Home Camera ipc hard-coded credentials

8.8CVSS0.00299EPSS

Vulnrichment•added 2026/03/20 6:2 a.m.•2 views

CVE-2026-4475 Yi Technology YI Home Camera ipc hard-coded credentials

8.8CVSS6.7AI score0.00299EPSS

Positive Technologies•added 2026/03/20 12:0 a.m.•5 views

PT-2026-26569

A vulnerability was found in Yi Technology YI Home Camera 2 2.1.1 20171024151200. The impacted element is an unknown function of the file home/web/ipc of the component CGI Endpoint. Performing a manipulation results in missing authentication. Access to the local network is required for this attac...

6.3CVSS6AI score0.00316EPSS

Check Point Advisories•added 2018/11/27 12:0 a.m.•3 views

Yi Technology Home Camera CRCDec Denial Of Service (CVE-2018-3935)

A denial of service vulnerability exists in the Yi Home Camera. Successful exploitation of this vulnerability could allow a remote attacker to allocate unlimited memory, resulting in denial of service...

5CVSS3.7AI score0.02253EPSS

Check Point Advisories•added 2018/11/14 12:0 a.m.•2 views

Yi Technology Home Camera 27US Denial Of Service (CVE-2018-3928)

A denial of service vulnerability exists in the firmware update functionality of Yi Home Camera. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system, creating a denial of service condition...

5CVSS5.1AI score0.02253EPSS

Check Point Advisories•added 2018/11/06 12:0 a.m.•7 views

Yi Technology Home Camera Time Sync Code Execution (CVE-2018-3892)

A remote code execution exists in the time syncing functionality of Yi Home Camera. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS4.5AI score0.02655EPSS

Talos Blog•added 2018/10/31 1:18 p.m.•105 views

Vulnerability Spotlight: Multiple Vulnerabilities in Yi Technology Home Camera

Vulnerabilities Discovered by Lilith xx of Cisco Talos. Overview Cisco Talos is disclosing multiple vulnerabilities in the firmware of the Yi Technology Home Camera. In order to prevent the exploitation of these vulnerabilities, Talos worked with Yi Technology to make sure a newer version of the...

7.5CVSS0.3AI score0.02633EPSS

Exploits9

Talos•added 2018/10/31 12:0 a.m.•862 views

Yi Technology Home Camera 27US Firmware Update Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the firmware update functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted file can cause a logic flaw and command injection, resulting in code execution. An attacker can insert an SD card to trigger this vulnerability...

7.6CVSS7.3AI score0.01672EPSS

Talos•added 2018/10/31 12:0 a.m.•528 views

Yi Technology Home Camera 27US QR Code trans_info Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the QR code scanning functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted QR Code can cause a buffer overflow, resulting in code execution. An attacker can make the camera scan a QR code to trigger this vulnerability...

8.3CVSS8.1AI score0.01932EPSS

Talos•added 2018/10/31 12:0 a.m.•525 views

Yi Technology Home Camera 27US cloudAPI SSID Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the cloud OTA setup functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted SSID can cause a command injection, resulting in code execution. An attacker can cause a camera to connect to this SSID to trigger this vulnerabilit...

8.8CVSS8.5AI score0.01635EPSS

Talos•added 2018/10/31 12:0 a.m.•515 views

Yi Technology Home Camera 27US CRCDec denial-of-service vulnerability

Summary An exploitable code execution vulnerability exists in the UDP network functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted set of UDP packets can allocate unlimited memory, resulting in denial of service. An attacker can send a set of packets to trigger this vulnerability...

7.5CVSS7.8AI score0.02253EPSS