3 matches found
CVE-2022-32454
A stack-based buffer overflow vulnerability exists in the XCMD setIPCam functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to remote code execution. An attacker can send a malicious XML payload to trigger this vulnerability...
CVE-2022-32454
A stack-based buffer overflow vulnerability exists in the XCMD setIPCam functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to remote code execution. An attacker can send a malicious XML payload to trigger this vulnerability...
CVE-2022-32454
Abode Systems, Inc. iota All-In-One Security Kit (versions 6.9X and 6.9Z) is affected by CVE-2022-32454 due to a stack-based buffer overflow in the XCMD setIPCam handler. The root cause is an unsafe strcpy into a 32-byte ipcam_1.name field when processing a crafted XML payload, enabling attacker-...