CVE-2018-3928

Summary

An exploitable code execution vulnerability exists in the firmware update functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted set of UDP packets can cause a settings change, resulting in denial of service. An attacker can send a set of packets to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
YiYi TechnologyYi Technology Home Camera 27US 1.8.7.0Daffected

Weaknesses

  • Reversible One-Way Hash

ADP Enrichment

CVE Program Container

Additional References

References