RCE Exploit for Wyze Cam v3 Publicly Released, Patch Now

A security researcher has discovered two vulnerabilities in the firmware of Wyze Cam v3, a popular indoor/outdoor security camera. The first flaw allows attackers to bypass authentication measures, while the second flaw enables them to execute their own code on the camera. The researcher has released a proof-of-concept exploit that grants attackers full control over the device. Wyze has released a firmware update to address the issues, but the researcher accuses the company of timing the patch release to avoid negative publicity during a hacking competition. Users are advised to apply the update or isolate their cameras if unable to do so.