CVE-2023-6321
7.2HIGHA command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests
게시됨: 5/15/2024업데이트됨: 2/11/2025
설명
A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests to trigger this vulnerability.
AI 분석AI 기반
영향받는 제품
owletcarecam_firmware
owletcarecam
-
owletcarecam_2_firmware
owletcarecam_2
-
throughtekkalay_platform
-
참조
- https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/ExploitThird Party Advisory
- https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/ExploitThird Party Advisory