Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
abode vulnerabilities and exploits
(subscribe to this query)
481
VMScore
CVE-2014-5531
The Abode (aka abode.webview) application 1.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Goabode Abode 1.7
641
VMScore
CVE-2020-8105
OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an malicious user to inject commands and gain root access. This issue affects: Abode iota All-In-One Security Kit versions before 1.0.2.23_6.9V_dev_t2_homekit_RF_2.0.19_...
Goabode Iota All-in-one Security Kit Firmware
NA
CVE-2022-29520
An OS command injection vulnerability exists in the console_main_loop :sys functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. A specially-crafted XCMD can lead to arbitrary command execution. An attacker can send an XML payload to trigger this vulnerability.
Goabode Iota All-in-one Security Kit Firmware 6.9z
NA
CVE-2022-33189
An OS command injection vulnerability exists in the XCMD setAlexa functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. A specially-crafted XCMD can lead to arbitrary command execution. An attacker can send a malicious XML payload to trigger this vulnerability.
Goabode Iota All-in-one Security Kit Firmware 6.9z
NA
CVE-2022-29472
An OS command injection vulnerability exists in the web interface util_set_serial_mac functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to...
Goabode Iota All-in-one Security Kit Firmware 6.9z
Goabode Iota All-in-one Security Kit Firmware 6.9x
NA
CVE-2022-29477
An authentication bypass vulnerability exists in the web interface /action/factory* functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP header can lead to authentication bypass. An attacker can send an HTTP request to trigger ...
Goabode Iota All-in-one Security Kit Firmware 6.9z
Goabode Iota All-in-one Security Kit Firmware 6.9x
NA
CVE-2022-29889
A hard-coded password vulnerability exists in the telnet functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. Use of a hard-coded root password can lead to arbitrary command execution. An attacker can authenticate with hard-coded credentials to trigger this vul...
Goabode Iota All-in-one Security Kit Firmware 6.9z
NA
CVE-2022-30541
An OS command injection vulnerability exists in the XCMD setUPnP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to arbitrary command execution. An attacker can send a malicious XML payload to trigger this vulnera...
Goabode Iota All-in-one Security Kit Firmware 6.9z
Goabode Iota All-in-one Security Kit Firmware 6.9x
NA
CVE-2022-32454
A stack-based buffer overflow vulnerability exists in the XCMD setIPCam functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to remote code execution. An attacker can send a malicious XML payload to trigger this vulner...
Goabode Iota All-in-one Security Kit Firmware 6.9z
Goabode Iota All-in-one Security Kit Firmware 6.9x
NA
CVE-2022-32574
A double-free vulnerability exists in the web interface /action/ipcamSetParamPost functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to memory corruption. An attacker can make an authenticated HTTP request to...
Goabode Iota All-in-one Security Kit Firmware 6.9z
Goabode Iota All-in-one Security Kit Firmware 6.9x
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »