描述
A stack-based buffer overflow vulnerability exists in the message parsing functionality of the Roku Indoor Camera SE version 3.0.2.4679 and Wyze Cam v3 version 4.36.11.5859. A specially crafted message can lead to stack-based buffer overflow. An attacker can make authenticated requests to trigger this vulnerability.
AI分析AI驱动
受影响产品
wyzecam_v3_firmware
4.36.11.5859
wyzecam_v3
-
rokuindoor_camera_se_firmware
3.0.2.4679
rokuindoor_camera_se
-
throughtekkalay_platform
-
参考资料
- https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/ExploitThird Party Advisory
- https://bitdefender.com/blog/labs/notes-on-throughtek-kalay-vulnerabilities-and-their-impact/ExploitThird Party Advisory