CVE-2019-12266 HIGH

CVE-2019-12266: Stack buffer overflow in Wyze Cam Pan v2, Cam v2 and Cam v3

Vendor Wyze
Product Cam Pan v2
Weakness CWE-121
Published March 30, 2022
Last update September 17, 2024

CVSS base score

7.6/10
Attack vector Adjacent
Attack complexity High
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

Stack-based Buffer Overflow vulnerability in Wyze Cam Pan v2, Cam v2, Cam v3 allows an attacker to run arbitrary code on the affected device. This issue affects: Wyze Cam Pan v2 versions prior to 4.49.1.47. Wyze Cam v2 versions prior to 4.9.8.1002. Wyze Cam v3 versions prior to 4.36.8.32.

Key dates

02Disclosure timeline

March 30, 2022 CVE published
September 17, 2024 Record updated