PT-2026-26569 · Yi Technology · Yi Home Camera
0Rbitingzer0
+1
·
Published
2026-03-20
·
Updated
2026-03-20
·
CVE-2026-4476
CVSS v3.1
6.3
Medium
| AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
A vulnerability was found in Yi Technology YI Home Camera 2 2.1.1 20171024151200. The impacted element is an unknown function of the file home/web/ipc of the component CGI Endpoint. Performing a manipulation results in missing authentication. Access to the local network is required for this attack. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Fix
Missing Authentication
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Yi Home Camera