CVE-2023-47882
Description
The Kami Vision YI IoT com.yunyi.smartcamera application through 4.1.9_20231127 for Android allows a remote attacker to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component.
NVD
Severity: HIGH
CVE ID: CVE-2023-47882
CVSS Score: 7.1
CVSS Metrics: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Proof Of Concept
actuator
CVE-2023-47882 | CVE-2024-23727
Refrence: GitHub