11 matches found
MAL-2025-35421 Malicious code in test-mlw2-glens-sutor-ruble-owlet (npm)
The package test-mlw2-glens-sutor-ruble-owlet was found to contain malicious code...
Malicious code in test-mlw2-glens-sutor-ruble-owlet (npm)
The package test-mlw2-glens-sutor-ruble-owlet was found to contain malicious code...
Malicious code in test-mlw2-hards-owlet (npm)
The package test-mlw2-hards-owlet was found to contain malicious code...
Malicious code in test-mlw2-fools-owlet (npm)
The package test-mlw2-fools-owlet was found to contain malicious code...
MAL-2025-35491 Malicious code in test-mlw2-hards-owlet (npm)
The package test-mlw2-hards-owlet was found to contain malicious code...
MAL-2025-35362 Malicious code in test-mlw2-fools-owlet (npm)
The package test-mlw2-fools-owlet was found to contain malicious code...
The vulnerability of the development package for integrating cloud services and communication functions in IoT devices. The Kalay SDK, a microprogramming software for video surveillance cameras such as Owlet Cam v1, Owlet Cam v2, Wyze Cam v3, and Roku Indoor Camera SE, is related to the use of uninitialized variables, allowing attackers to disclose confidential information.
The vulnerability of the development package for integrating cloud services and communication functions in IoT devices is related to the use of uninitialized variables. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...
CVE-2023-6321 Owlet Camera OS command injection
A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests to trigger this vulnerability...
Owlet Cam 操作系统命令注入漏洞
Owlet Cam is a video baby monitor from Owlet USA. Owlet Cam suffers from an operating system command injection vulnerability that originates from allowing an authenticated user to run system commands as the root user, which could lead to a complete compromise of the device...
PT-2024-5067 · Owlet +3 · Owlet Cam V1 +4
Name of the Vulnerable Software and Affected Versions: ThroughTek Kalay SDK versions used in Owlet Cam v1, Owlet Cam v2, Wyze Cam v3, and Roku Indoor Camera SE Description: The issue is related to the use of uninitialized variables in the Kalay SDK, which can be exploited by a remote attacker to...
PT-2023-9141 · Owlet · Owlet Cam
Name of the Vulnerable Software and Affected Versions: Owlet Cam versions v1 and v2 Description: A command injection vulnerability exists in the IOCTL that manages OTA updates, allowing a specially crafted command to lead to command execution as the root user. An attacker can make authenticated...