Kalay SDK

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2023-6324	ThroughTek Kalay SDK		0.00	—	0.01		May 15, 2024	ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an unexpected PSK identity
CVE-2023-6323	ThroughTek Kalay SDK		0.00	—	0.00		May 15, 2024	ThroughTek Kalay SDK does not verify the authenticity of received messages, allowing an attacker to impersonate an authoritative server.

CVE-2023-6324May 15, 2024
ThroughTek
Kalay SDK
risk 0.00cvss —epss 0.01
ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an unexpected PSK identity
CVE-2023-6323May 15, 2024
ThroughTek
Kalay SDK
risk 0.00cvss —epss 0.00
ThroughTek Kalay SDK does not verify the authenticity of received messages, allowing an attacker to impersonate an authoritative server.