CVE-2023-6321
7.2HIGHA command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests
Опубликовано: 5/15/2024Обновлено: 2/11/2025
Описание
A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests to trigger this vulnerability.
ИИ-АнализНа базе ИИ
Затронутые продукты
owletcarecam_firmware
owletcarecam
-
owletcarecam_2_firmware
owletcarecam_2
-
throughtekkalay_platform
-
Ссылки
- https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/ExploitThird Party Advisory
- https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/ExploitThird Party Advisory