How severe is CVE-2023-6322?

CVE-2023-6322 has a CVSS v3 score of 7.2 (HIGH).

CVE-2023-6322

7.2HIGH

A stack-based buffer overflow vulnerability exists in the message parsing functionality of the Roku Indoor Camera SE version 3.0.2.4679 and Wyze Cam v3 version 4.36.11.5859. A specially crafted messag

Published: 5/15/2024Updated: 2/11/2025

Description

A stack-based buffer overflow vulnerability exists in the message parsing functionality of the Roku Indoor Camera SE version 3.0.2.4679 and Wyze Cam v3 version 4.36.11.5859. A specially crafted message can lead to stack-based buffer overflow. An attacker can make authenticated requests to trigger this vulnerability.

AI AnalysisPowered by AI

Affected Products

wyzecam_v3_firmware

4.36.11.5859

wyzecam_v3

rokuindoor_camera_se_firmware

3.0.2.4679

rokuindoor_camera_se

throughtekkalay_platform

References

https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/
ExploitThird Party Advisory
https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/
ExploitThird Party Advisory