Yi Home Camera Firmware Security Vulnerabilities and Issues — Yi Home Camera Firmware CVE List

Lucene search

YitechnologyYi Home Camera Firmware

4 matches found

CVE•added 2018/11/02 5:29 p.m.•59 views

CVE-2018-3890

An exploitable code execution vulnerability exists in the firmware update functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted file can cause a logic flaw and command injection, resulting in code execution. An attacker can insert an SD card to trigger this vulnerability.

7.6CVSS7AI score0.00374EPSS

CVE•added 2018/11/02 5:29 p.m.•56 views

CVE-2018-3935

An exploitable code execution vulnerability exists in the UDP network functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted set of UDP packets can allocate unlimited memory, resulting in denial of service. An attacker can send a set of packets to trigger this vulnerability.

7.5CVSS7.5AI score0.00441EPSS

CVE•added 2018/11/02 5:29 p.m.•51 views

CVE-2018-3920

An exploitable code execution vulnerability exists in the firmware update functionality of the Yi Home Camera 27US 1.8.7.0D. A specially crafted 7-Zip file can cause a CRC collision, resulting in a firmware update and code execution. An attacker can insert an SDcard to trigger this vulnerability.

7.6CVSS6.9AI score0.00132EPSS

CVE•added 2018/11/01 3:29 p.m.•49 views

CVE-2018-3928

An exploitable code execution vulnerability exists in the firmware update functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted set of UDP packets can cause a settings change, resulting in denial of service. An attacker can send a set of packets to trigger this vulnerability.

7.5CVSS7.6AI score0.00547EPSS