Vulnerability Description
Stack-based Buffer Overflow vulnerability in Wyze Cam Pan v2, Cam v2, Cam v3 allows an attacker to run arbitrary code on the affected device. This issue affects: Wyze Cam Pan v2 versions prior to 4.49.1.47. Wyze Cam v2 versions prior to 4.9.8.1002. Wyze Cam v3 versions prior to 4.36.8.32.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wyze | Cam Pan V2 Firmware | < 4.49.1.47 |
| Wyze | Cam Pan V2 | - |
| Wyze | Cam V2 Firmware | < 4.9.8.1002 |
| Wyze | Cam V2 | - |
| Wyze | Cam V3 Firmware | < 4.36.8.32 |
| Wyze | Cam V3 | - |
Related Weaknesses (CWE)
References
- https://www.bitdefender.com/blog/labs/vulnerabilities-identified-in-wyze-cam-iotThird Party Advisory
- https://www.bitdefender.com/blog/labs/vulnerabilities-identified-in-wyze-cam-iotThird Party Advisory
FAQ
What is CVE-2019-12266?
CVE-2019-12266 is a vulnerability with a CVSS score of 7.6 (HIGH). Stack-based Buffer Overflow vulnerability in Wyze Cam Pan v2, Cam v2, Cam v3 allows an attacker to run arbitrary code on the affected device. This issue affects: Wyze Cam Pan v2 versions prior to 4.49...
How severe is CVE-2019-12266?
CVE-2019-12266 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-12266?
Check the references section above for vendor advisories and patch information. Affected products include: Wyze Cam Pan V2 Firmware, Wyze Cam Pan V2, Wyze Cam V2 Firmware, Wyze Cam V2, Wyze Cam V3 Firmware.