3 matches found
CVE-2022-33205
creationtimestamp| type| source ---|---|--- 2022-10-25 20:40:45+00:00| seen| https://t.me/cibsecurity/52050...
CVE-2022-33205
Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP reque...
CVE-2022-33205
Summary: CVE-2022-33205 affects Abode Systems’ iota All-In-One Security Kit (firmware 6.9X/6.9Z). The OS command injection exists in the web interface endpoint /action/wirelessConnect and is triggered when an authenticated HTTP request supplies specific parameters. The root cause is the unsafe ha...