Vulnerabilities > Wyze

DATE CVE VULNERABILITY TITLE RISK
2024-07-19 CVE-2024-37066 OS Command Injection vulnerability in Wyze CAM V4 Firmware
A command injection vulnerability exists in Wyze V4 Pro firmware versions before 4.50.4.9222, which allows attackers to execute arbitrary commands over Bluetooth as root during the camera setup process.
low complexity
wyze CWE-78
8.8
2022-03-30 CVE-2019-12266 Out-of-bounds Write vulnerability in Wyze products
Stack-based Buffer Overflow vulnerability in Wyze Cam Pan v2, Cam v2, Cam v3 allows an attacker to run arbitrary code on the affected device.
network
low complexity
wyze CWE-787
critical
9.8
2022-03-30 CVE-2019-9564 Improper Authentication vulnerability in Wyze products
A vulnerability in the authentication logic of Wyze Cam Pan v2, Cam v2, Cam v3 allows an attacker to bypass login and control the devices.
network
low complexity
wyze CWE-287
critical
9.8