CVE-2025-29660
Last modified
CVE-2025-29660 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP service on port 6789. This service lacks proper input validation, allowing attackers to execute arbitrary scripts present on the device by sending specially crafted TCP requests using directory traversal techniques.. EPSS estimates a 1.22% chance of exploitation in the next 30 days.
Description
A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP service on port 6789. This service lacks proper input validation, allowing attackers to execute arbitrary scripts present on the device by sending specially crafted TCP requests using directory traversal techniques.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Yiiot | Xy-3820 Firmware | 6.0.24.10 |
References
- https://github.com/Yasha-ops/RCE-YiIOTExploit, Vendor Advisory
- https://github.com/Yasha-ops/vulnerability-research/tree/master/CVE-2025-29660Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2025-29660?
How severe is CVE-2025-29660?
How do I fix CVE-2025-29660?
Are you affected by CVE-2025-29660?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST