CVE-2022-29477
CVE-2022-29477 affects Abode Systems iota All-In-One Security Kit 6.9X and 6.9Z. The vulnerability is an authentication bypass in the web interface’s /action/factory* endpoints caused by a hard-coded HTTP header check (X-Climax-Tag: Factory-27940001-21245121). If a request includes the correct he...