CVE-2026-4478 | Yi Technology YI Home Camera 2 2.1.1_20171024151200 HTTP Firmware Update home/web/ipc signature verification

A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.1_20171024151200 and classified as problematic. This impacts an unknown function of the file home/web/ipc of the component HTTP Firmware Update Handler. The manipulation leads to improper verification of cryptographic signature.

This vulnerability is uniquely identified as CVE-2026-4478. The attack is possible to be carried out remotely. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-4478 | Yi Technology YI Home Camera 2 2.1.1_20171024151200 HTTP Firmware Update home/web/ipc signature verification

Post correlati

CVE-2024-37423 | Automattic Newspack Blocks Plugin up to 3.0.8 on WordPress path traversal

CVE-2022-43934 | Brocade SANnav up to 2.2.1 risky encryption

CVE-2024-52427 | Saso Nikolov Event Tickets with Ticket Scanner Plugin up to 2.3.11 on WordPress special elements used in a template engine

CVE-2024-43657 | Iocharger 24120701/25010801 action.exe os command injection (DIVD-2024-00035)