Remote Code Execution Vulnerability in Kami Vision YI IoT com.yunyi.smartcamera Android App

Remote Code Execution Vulnerability in Kami Vision YI IoT com.yunyi.smartcamera Android App

CVE-2023-47882 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

The Kami Vision YI IoT com.yunyi.smartcamera application through 4.1.9_20231127 for Android allows a remote attacker to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component.

Learn more about our Cis Benchmark Audit For Google Android.