Critical severity9.8NVD Advisory· Published Sep 11, 2023· Updated Jun 17, 2026
CVE-2023-42470
CVE-2023-42470
Description
The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content loading occurs.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Imou/Lifedescription
Patches
Vulnerability mechanics
References
3- github.com/actuator/imou/blob/main/imou-life-6.8.0.mdnvdExploit
- github.com/actuator/imou/blob/main/poc.apknvdExploit
- github.com/actuator/cve/blob/main/CVE-2023-42470nvdThird Party Advisory
News mentions
0No linked articles in our index yet.