2 matches found
CVE-2022-33204
The primary CVE, CVE-2022-33204, affects Abode Systems iota All-In-One Security Kit (firmware 6.9X/6.9Z). Affected component: web interface /action/wirelessConnect. Root cause: if the HTTP POST supplies ssid_hex, an authenticated attacker can inject commands without neutralization, executing as r...
Vulnerability Spotlight: Vulnerabilities in Abode Systems home security kit could allow attacker to take over cameras, remotely disable them
Matt Wiseman of Cisco Talos discovered these vulnerabilities. Cisco Talos recently discovered several vulnerabilities in the Abode Systems iota All-In-One Security Kit. This kit includes a main security camera and hub that can alert users of unwanted movement in their homes. It also includes...