CVE-2025-29660

CRITICAL

Yi IOT XY-3820 v6.0.24.10 - Arbitrary Script Execution via Directory Traversal in TCP Service

Title source: llm

Description

A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP service on port 6789. This service lacks proper input validation, allowing attackers to execute arbitrary scripts present on the device by sending specially crafted TCP requests using directory traversal techniques.

References (2)

Core 2

Core References

Exploit, Vendor Advisory

https://github.com/Yasha-ops/RCE-YiIOT

View Exploit ZIP pw:eip

Exploit, Third Party Advisory

https://github.com/Yasha-ops/vulnerability-research/tree/master/CVE-2025-29660

View Exploit ZIP pw:eip

Scores

CVSS v3 9.8

EPSS 0.0122

EPSS Percentile 64.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-22

Status published

Products (1)

yiiot/xy-3820_firmware 6.0.24.10

Published Apr 21, 2025

Tracked Since Feb 18, 2026