Bitdefender has discovered security vulnerabilities in Wyze CAM IP video cameras. Attackers can bypass the authentication process, gain complete control over the device and read information and configuration data from the camera's SD card and install other malicious code. An update closes the gap from the Wyze Cam V2. However, patching is not possible for the first version of the camera.
Surveillance cameras deliver sensitive content and the evaluation of the data is subject to strict data protection regulations. Some security gaps that allow access to recorded videos therefore not only endanger the security of a building, but can also violate personal rights. A networked camera as Internet of Things (IoT) hardware needs the same protection as a PC endpoint.
Attackers bypass authentication process
As is so often the case in the IoT world, deficiencies in authentication are the gateway for attackers in the first version of Wyze CAM. Due to an error in the original authentication process, third parties can bypass the login without knowing the "enr" value that is actually required for this. In remote mode, a hacker can have full control of the device, freely pan/tilt the lens, stop recording, or turn off the camera entirely.
Initially, the attacker cannot access the encrypted content. However, a subsequent stack buffer overflow allows him to remotely execute code and view the videos in the next step.
SD card contents accessible
In addition, unauthorized access to all contents of a camera's SD card is necessary. Here, the unauthorized viewers access the content via a symlink to the directory that is automatically established. The log files of the SD card can be read and reveal the "enr" value for authentication and the UID for networking the camera. For various reasons, the manufacturer was no longer able to supply a patch for the first version of the Wyze Cam, and he no longer sells the Wyze Cam V1. Customers who use them should replace them.
More at Bitdefender.com
About Bitdefender Bitdefender is a leading global provider of cybersecurity solutions and antivirus software, protecting over 500 million systems in more than 150 countries. Since it was founded in 2001, the company's innovations have consistently ensured excellent security products and intelligent protection for devices, networks and cloud services for private customers and companies. As the supplier of choice, Bitdefender technology is found in 38 percent of security solutions deployed around the world and is trusted and recognized by industry experts, manufacturers and customers alike. www.bitdefender.de