Goabode Iota All-in-one Security Kit Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Goabode Iota All-in-one Security Kit Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (39)
CVE-2022-33192 — CVSS 10.0 (critical): Four OS command injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-33195 — CVSS 10.0 (critical): Four OS command injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-33194 — CVSS 10.0 (critical): Four OS command injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-33193 — CVSS 10.0 (critical): Four OS command injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-33207 — CVSS 9.9 (critical): Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota…
CVE-2022-33204 — CVSS 9.9 (critical): Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota…
CVE-2022-33205 — CVSS 9.9 (critical): Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota…
CVE-2022-33206 — CVSS 9.9 (critical): Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota…
CVE-2022-30541 — CVSS 9.8 (critical): An OS command injection vulnerability exists in the XCMD setUPnP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and…
CVE-2022-35876 — CVSS 9.8 (critical): Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-32454 — CVSS 9.8 (critical): A stack-based buffer overflow vulnerability exists in the XCMD setIPCam functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-35875 — CVSS 9.8 (critical): Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-35874 — CVSS 9.8 (critical): Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-35244 — CVSS 9.8 (critical): A format string injection vulnerability exists in the XCMD getVarHA functionality of abode systems, inc. iota All-In-One Security Kit 6.9X…
CVE-2022-32773 — CVSS 9.8 (critical): An OS command injection vulnerability exists in the XCMD doDebug functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and…
CVE-2022-33938 — CVSS 9.8 (critical): A format string injection vulnerability exists in the ghome_process_control_packet functionality of Abode Systems, Inc. iota All-In-One…
CVE-2022-33189 — CVSS 9.8 (critical): An OS command injection vulnerability exists in the XCMD setAlexa functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. A…
CVE-2022-35877 — CVSS 9.8 (critical): Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-29472 — CVSS 9.8 (critical): An OS command injection vulnerability exists in the web interface util_set_serial_mac functionality of Abode Systems, Inc. iota All-In-One…
CVE-2022-27805 — CVSS 9.8 (critical): An authentication bypass vulnerability exists in the GHOME control functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X…
CVE-2022-27804 — CVSS 9.8 (critical): An os command injection vulnerability exists in the web interface util_set_abode_code functionality of Abode Systems, Inc. iota All-In-One…
CVE-2022-29477 — CVSS 9.8 (critical): An authentication bypass vulnerability exists in the web interface /action/factory* functionality of Abode Systems, Inc. iota All-In-One…
CVE-2022-29520 — CVSS 9.8 (critical): An OS command injection vulnerability exists in the console_main_loop :sys functionality of Abode Systems, Inc. iota All-In-One Security…
CVE-2022-29889 — CVSS 9.8 (critical): A hard-coded password vulnerability exists in the telnet functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. Use of a…
CVE-2020-8105 — CVSS 9.6 (critical): OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an attacker to inject…
CVE-2022-35887 — CVSS 8.8 (high): Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota…
CVE-2022-35885 — CVSS 8.8 (high): Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota…
CVE-2022-35886 — CVSS 8.8 (high): Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota…
CVE-2022-32775 — CVSS 8.8 (high): An integer overflow vulnerability exists in the web interface /action/ipcamRecordPost functionality of Abode Systems, Inc. iota All-In-One…
CVE-2022-32586 — CVSS 8.8 (high): An OS command injection vulnerability exists in the web interface /action/ipcamRecordPost functionality of Abode Systems, Inc. iota…
CVE-2022-30603 — CVSS 8.8 (high): An OS command injection vulnerability exists in the web interface /action/iperf functionality of Abode Systems, Inc. iota All-In-One…
CVE-2022-35878 — CVSS 8.8 (high): Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-35879 — CVSS 8.8 (high): Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-35880 — CVSS 8.8 (high): Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-35881 — CVSS 8.8 (high): Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode Systems, Inc. iota All-In-One Security Kit…
CVE-2022-35884 — CVSS 8.8 (high): Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota…
CVE-2022-29475 — CVSS 8.1 (high): An information disclosure vulnerability exists in the XFINDER functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and…
CVE-2022-32760 — CVSS 7.5 (high): A denial of service vulnerability exists in the XCMD doDebug functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and…
CVE-2022-32574 — CVSS 6.5 (medium): A double-free vulnerability exists in the web interface /action/ipcamSetParamPost functionality of Abode Systems, Inc. iota All-In-One…