Vulnerability Details CVE-2025-29659
Yi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command Execution via the "cmd_listen" function located in the "cmd" binary.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.3%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2025-29659
-
cpe:2.3:h:yiiot:xy-3820:-
-
cpe:2.3:o:yiiot:xy-3820_firmware:6.0.24.10