Vulnerabilities > Roku

DATE	CVE	VULNERABILITY TITLE	RISK
2024-05-15	CVE-2023-6322	Out-of-bounds Write vulnerability in multiple products A stack-based buffer overflow vulnerability exists in the message parsing functionality of the Roku Indoor Camera SE version 3.0.2.4679 and Wyze Cam v3 version 4.36.11.5859. network low complexity wyze roku throughtek CWE-787	8.8
2024-05-15	CVE-2023-6323	ThroughTek Kalay SDK does not verify the authenticity of received messages, allowing an attacker to impersonate an authoritative server. low complexity wyze roku owletcare throughtek	6.5
2024-05-15	CVE-2023-6324	Use of Uninitialized Resource vulnerability in multiple products ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an unexpected PSK identity network low complexity wyze roku owletcare throughtek CWE-908	8.8
2022-04-08	CVE-2022-27152	Unspecified vulnerability in Roku OS 9.4.0 Roku devices running RokuOS v9.4.0 build 4200 or earlier that uses a Realtek WiFi chip is vulnerable to Arbitrary file modification. low complexity roku	5.7
2018-07-03	CVE-2018-11314	Improper Input Validation vulnerability in Roku Firmware The External Control API in Roku and Roku TV products allow unauthorized access via a DNS Rebind attack. network low complexity roku CWE-20 critical	9.6

Vulnerabilities > Roku {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Roku"}]}