Owletcare Cam 2 Firmware vulnerabilities
3 known vulnerabilities affecting owletcare/cam_2_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-6321P2HIGHCVSS 8.8fixed in 4.2.102024-05-15
CVE-2023-6321 [HIGH] CWE-78 CVE-2023-6321: A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted
A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests to trigger this vulnerability.
nvd
CVE-2023-6324P3HIGHCVSS 8.8fixed in 4.2.102024-05-15
CVE-2023-6324 [HIGH] CWE-457 CVE-2023-6324: ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an unexpecte
ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an unexpected PSK identity
nvd
CVE-2023-6323P4MEDIUMCVSS 6.5fixed in 4.2.102024-05-15
CVE-2023-6323 [MEDIUM] CWE-345 CVE-2023-6323: ThroughTek Kalay SDK does not verify the authenticity of received messages, allowing an attacker to
ThroughTek Kalay SDK does not verify the authenticity of received messages, allowing an attacker to impersonate an authoritative server.
nvd