PT-2026-26568 · Yi Technology · Yi Home Camera 2

0Rbitingzer0

Publicado

2026-03-20

Atualizado

2026-03-20

CVE-2026-4475

CVSS v3.1

8.8

Alta

Vetor

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Yi Technology YI Home Camera 2 version 2.1.1 20171024151200

Description A security issue has been identified in Yi Technology YI Home Camera 2. The issue involves hard-coded credentials being exposed through manipulation of an unknown function within the home/web/ipc file. Successful exploitation requires access to the local network. The exploit for this issue has been publicly disclosed, and the vendor was notified but did not respond.

Recommendations For Yi Technology YI Home Camera 2 version 2.1.1 20171024151200, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Using Hardcoded Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-259CWE-798

Identificadores relacionados

CVE-2026-4475

Produtos afetados

Yi Home Camera 2

PT-2026-26568 · Yi Technology · Yi Home Camera 2

CVE-2026-4475

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7