actuator/yi

actuator/yi

GitHubGitHub
GitHubgithub.com
Releases0
Stars1
CVE-2023-47882 | CVE-2024-23727
Log in to subscribe

CVE History

CVEPublishedCVSS v3CVSS v2
CVE-2024-23727
8.4 HIGH

The YI Smart Kami Vision com.kamivision.yismart application through 1.0.0_20231219 for Android allows a remote attacker to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component.

CVE-2023-47882
7.1 HIGH

The Kami Vision YI IoT com.yunyi.smartcamera application through 4.1.9_20231127 for Android allows a remote attacker to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component.