{"vulnerability": "cve-2023-42470", "sightings": [{"uuid": "c57d4e1e-3ec9-4e22-b1ff-e30a38a0c467", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-42470", "type": "seen", "source": "https://t.me/cibsecurity/70198", "content": "\u203c CVE-2023-42470 \u203c\n\nThe Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content loading occurs.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-11T12:22:12.000000Z"}, {"uuid": "f567d0ec-40ad-4e2c-b7eb-66d3c31a01bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-42470", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5674", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-42470\nURL\uff1ahttps://github.com/actuator/imou\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-11-04T17:33:58.000000Z"}]}