Vulnerabilities > Ezviz > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-04 CVE-2023-41613 Uncontrolled Search Path Element vulnerability in Ezviz Studio 2.2.0
EzViz Studio v2.2.0 is vulnerable to DLL hijacking.
local
low complexity
ezviz CWE-427
7.8
7.8
2023-08-01 CVE-2023-34551 Out-of-bounds Write vulnerability in Ezviz products
In certain EZVIZ products, two stack buffer overflows in netClientSetWlanCfg function of the EZVIZ SDK command server can allow an authenticated attacker present on the same local network as the camera to achieve remote code execution.
low complexity
ezviz CWE-787
8.0
8.0
2023-08-01 CVE-2023-34552 Out-of-bounds Write vulnerability in Ezviz products
In certain EZVIZ products, two stack based buffer overflows in mulicast_parse_sadp_packet and mulicast_get_pack_type functions of the SADP multicast protocol can allow an unauthenticated attacker present on the same local network as the camera to achieve remote code execution.
low complexity
ezviz CWE-787
8.8
8.8