CVE-2024-23727

Published March 28th, 2024

View on NVD ↗

CVSS v3

8.4

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

The YI Smart Kami Vision com.kamivision.yismart application through 1.0.0_20231219 for Android allows a remote attacker to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component.

actuator/yi

CVE-2023-47882 | CVE-2024-23727

GitHub