CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Yitechnology: >> Yi Car Dashcam Security Vulnerabilities

CVE-2024-56897

Improper access control in the HTTP server in YI Car Dashcam v3.88 allows unrestricted file downloads, uploads, and API commands. API commands can also be made to make unauthorized modifications to the device settings, such as disabling recording, disabling sounds, factory reset.

CVSS Score

9.8

EPSS Score

0.001

Published

2025-02-24

Page 1

Vulnerabilities

Vulnerable Software

Yitechnology: >> Yi Car Dashcam Security Vulnerabilities

Products

Pricing

Contact Us