PT-2022-19676 · Abode Systems · Iota All-In-One Security Kit

Name of the Vulnerable Software and Affected Versions: Abode Systems, Inc. iota All-In-One Security Kit version 6.9Z Description: An OS command injection issue exists in the console main loop :sys functionality. A specially-crafted XCMD can lead to arbitrary command execution. An attacker can sen...

Abode Iota 操作系统命令注入漏洞

Abode Iota is a reliable Diy home security system from Abode. A security vulnerability exists in Abode Iota version 6.9Z, which stems from an operating system command injection in the consolemainloop :sys function, which can be exploited by an attacker to send a specially crafted XCMD resulting i...