How severe is CVE-2023-6321?

CVE-2023-6321 has a CVSS v3 score of 7.2 (HIGH).

CVE-2023-6321

7.2HIGH

A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests

公開日: 5/15/2024更新日: 2/11/2025

説明

A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests to trigger this vulnerability.

AI分析AIによる分析

影響を受ける製品

owletcarecam_firmware

owletcarecam

owletcarecam_2_firmware

owletcarecam_2

throughtekkalay_platform

参照

https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/
ExploitThird Party Advisory
https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/
ExploitThird Party Advisory