CVE-2018-3934
- Reference to the description:
- Description:
- An exploitable code execution vulnerability exists in the firmware update functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted set of UDP packets can cause a logic flaw, resulting in an authentication bypass. An attacker can sniff network traffic and send a set of packets to trigger this vulnerability.
- Last updated date:
- 02/02/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/02/2023
- Reference url to background
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0601