Vulnerabilities > CVE-2023-6323

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

NVD

Published: 2024-05-15

Updated: 2025-02-11

Summary

ThroughTek Kalay SDK does not verify the authenticity of received messages, allowing an attacker to impersonate an authoritative server.

Part	Description	Count
OS	Wyze Wyze CAM V3 Firmware 4.36.11.5859	1
OS	Roku Roku Indoor Camera SE Firmware 3.0.2.4679	1
OS	Owletcare Owletcare CAM Firmware * Owletcare CAM 2 Firmware *	2
Hardware	Wyze Wyze CAM V3 -	1
Hardware	Roku Roku Indoor Camera SE -	1
Hardware	Owletcare Owletcare CAM - Owletcare CAM 2 -	2
Application	Throughtek Throughtek Kalay Platform -	1