Goabode Iota_all-in-one_security_kit
19 CVEs affecting Goabode Iota_all-in-one_security_kit. Latest disclosed: 2022-10-25. Critical: 13, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-35244 | Critical | 9.8 | 2022-10-25 | A format string injection vulnerability exists in the XCMD getVarHA functionality of abode systems, inc. iota All-In-One Security Kit 6.9X and 6.9Z. A speciall… |
CVE-2022-33938 | Critical | 9.8 | 2022-10-25 | A format string injection vulnerability exists in the ghome_process_control_packet functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6… |
CVE-2022-33189 | Critical | 9.8 | 2022-10-25 | An OS command injection vulnerability exists in the XCMD setAlexa functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. A specially-crafted X… |
CVE-2022-32773 | Critical | 9.8 | 2022-10-25 | An OS command injection vulnerability exists in the XCMD doDebug functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-c… |
CVE-2022-32454 | Critical | 9.8 | 2022-10-25 | A stack-based buffer overflow vulnerability exists in the XCMD setIPCam functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A spec… |
CVE-2022-30541 | Critical | 9.8 | 2022-10-25 | An OS command injection vulnerability exists in the XCMD setUPnP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-c… |
CVE-2022-29889 | Critical | 9.8 | 2022-10-25 | A hard-coded password vulnerability exists in the telnet functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. Use of a hard-coded root passw… |
CVE-2022-29520 | Critical | 9.8 | 2022-10-25 | An OS command injection vulnerability exists in the console_main_loop :sys functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. A specially-… |
CVE-2022-29477 | Critical | 9.8 | 2022-10-25 | An authentication bypass vulnerability exists in the web interface /action/factory* functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and… |
CVE-2022-29472 | Critical | 9.8 | 2022-10-25 | An OS command injection vulnerability exists in the web interface util_set_serial_mac functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X an… |
CVE-2022-27805 | Critical | 9.8 | 2022-10-25 | An authentication bypass vulnerability exists in the GHOME control functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially… |
CVE-2022-27804 | Critical | 9.8 | 2022-10-25 | An os command injection vulnerability exists in the web interface util_set_abode_code functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X an… |
CVE-2020-8105 | Critical | 9.6 | 2021-12-20 | OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an attacker to inject commands and gain root acc… |
CVE-2022-32775 | High | 8.8 | 2022-10-25 | An integer overflow vulnerability exists in the web interface /action/ipcamRecordPost functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X an… |
CVE-2022-32586 | High | 8.8 | 2022-10-25 | An OS command injection vulnerability exists in the web interface /action/ipcamRecordPost functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9… |
CVE-2022-30603 | High | 8.8 | 2022-10-25 | An OS command injection vulnerability exists in the web interface /action/iperf functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z… |
CVE-2022-29475 | High | 8.1 | 2022-10-25 | An information disclosure vulnerability exists in the XFINDER functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-craf… |
CVE-2022-32760 | High | 7.5 | 2022-10-25 | A denial of service vulnerability exists in the XCMD doDebug functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-craft… |
CVE-2022-32574 | Medium | 6.5 | 2022-10-25 | A double-free vulnerability exists in the web interface /action/ipcamSetParamPost functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6… |