CVE-2024-23727 Information
Mar 31, 2024
cve
Description
The YI Smart Kami Vision com.kamivision.yismart application through 1.0.0_20231219 for Android allows a remote attacker to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component.
Reference
https://github.com/actuator/yi/blob/main/com.kamivision.yismart.V1.0.0_20231219.md
Share on: