Goabode

Iota All-in-one Security Kit Firmware

39 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2022-33193

Exploit
  • EPSS 3.7%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:07:41

Four OS command injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A XCMD can lead to arbitrary command execution. An attacker can send a sequence of malicious comma...

9.8

CVE-2022-30541

Exploit
  • EPSS 1.35%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:02:54

An OS command injection vulnerability exists in the XCMD setUPnP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to arbitrary command execution. An attacker can send a malicious XML p...

8.8

CVE-2022-30603

Exploit
  • EPSS 2.5%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:03:00

An OS command injection vulnerability exists in the web interface /action/iperf functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can...

9.8

CVE-2022-32454

Exploit
  • EPSS 4.97%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:06:22

A stack-based buffer overflow vulnerability exists in the XCMD setIPCam functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to remote code execution. An attacker can send a malicious XML ...

6.5

CVE-2022-32574

Exploit
  • EPSS 1.43%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:06:39

A double-free vulnerability exists in the web interface /action/ipcamSetParamPost functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to memory corruption. An attacker can make an...

8.8

CVE-2022-32586

Exploit
  • EPSS 1.86%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:06:41

An OS command injection vulnerability exists in the web interface /action/ipcamRecordPost functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to arbitrary command execution. An at...

7.5

CVE-2022-32760

Exploit
  • EPSS 0.48%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:06:54

A denial of service vulnerability exists in the XCMD doDebug functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to denial of service. An attacker can send a malicious XML payload to trig...

9.8

CVE-2022-32773

Exploit
  • EPSS 4.94%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:06:55

An OS command injection vulnerability exists in the XCMD doDebug functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to arbitrary command execution. An attacker can send a malicious XML p...

8.8

CVE-2022-32775

Exploit
  • EPSS 1.3%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:06:56

An integer overflow vulnerability exists in the web interface /action/ipcamRecordPost functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to memory corruption. An attacker can mak...

9.8

CVE-2022-33189

Exploit
  • EPSS 1.36%
  • Veröffentlicht 25.10.2022 17:15:52
  • Zuletzt bearbeitet 21.11.2024 07:07:41

An OS command injection vulnerability exists in the XCMD setAlexa functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. A specially-crafted XCMD can lead to arbitrary command execution. An attacker can send a malicious XML payload t...