CVE-2022-32760
Affected product: Abode Systems iota All-In-One Security Kit (versions 6.9X–6.9Z). Vulnerability vector: XCMD doDebug function accepts a crafted XML payload via XMPP; specifically the parameter triggers a fault. Root cause: doDebug parses crash and writes to address 0x0, crashing the /root/hpgw ...