Throughtek Kalay Sdk
2 CVEs affecting Throughtek Kalay Sdk. Latest disclosed: 2024-05-15. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-6324 | High | 8.1 | 2024-05-15 | ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an unexpected PSK identity |
CVE-2023-6323 | Medium | 4.3 | 2024-05-15 | ThroughTek Kalay SDK does not verify the authenticity of received messages, allowing an attacker to impersonate an authoritative server. |