Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Yi Technology YI Home Camera CGI Endpoint ipc missing authentication
Vulnerability Description
A vulnerability was found in Yi Technology YI Home Camera 2 2.1.1_20171024151200. The impacted element is an unknown function of the file home/web/ipc of the component CGI Endpoint. Performing a manipulation results in missing authentication. Access to the local network is required for this attack. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
Yi Technology YI Home Camera 2 访问控制错误漏洞
Vulnerability Description
Yi Technology YI Home Camera 2是中国Yi Technology公司的一款智能家用摄像设备。 Yi Technology YI Home Camera 2 2.1.1_20171024151200版本存在访问控制错误漏洞,该漏洞源于组件CGI Endpoint的文件home/web/ipc缺少身份验证。
CVSS Information
N/A
Vulnerability Type
N/A