Return to CVE list

CVE-2025-29659

9.8
Critical

CVE-2025-29659

cve@mitre.org
Awaiting Analysis
View on MITREFind on GitHub

Description

Yi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command Execution via the "cmd_listen" function located in the "cmd" binary.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

cve@mitre.org
https://github.com/Yasha-ops/RCE-YiIOT
cve@mitre.org
https://github.com/Yasha-ops/vulnerability-research/tree/master/CVE-2025-29659
134c704f-9b21-4f2e-91b3-4a467353bcc0
https://github.com/Yasha-ops/vulnerability-research/tree/master/CVE-2025-29659