CVE-2022-33206

Опубликовано: 25 окт. 2022

Источник: nvd

CVSS3: 10

CVSS3: 9.9

EPSS Низкий

Описание

Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.This vulnerability focuses on the unsafe use of the key and default_key_id HTTP parameters to construct an OS Command crafted at offset 0x19b1f4 of the /root/hpgw binary included in firmware 6.9Z.

Ссылки

https://talosintelligence.com/vulnerability_reports/TALOS-2022-1568
Exploit
Third Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1568
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:goabode:iota_all-in-one_security_kit_firmware:6.9x:*:*:*:*:*:*:*

cpe:2.3:o:goabode:iota_all-in-one_security_kit_firmware:6.9z:*:*:*:*:*:*:*

EPSS

Процентиль: 78%

0.01109

Низкий

10 Critical

CVSS3

9.9 Critical

CVSS3

Дефекты

CWE-78

Связанные уязвимости

GHSA-4v9h-r88h-8rcv

CVSS3: 9.9

github

больше 3 лет назад

Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.This vulnerability focuses on the unsafe use of the `key` and `default_key_id` HTTP parameters to construct an OS Command crafted at offset `0x19b1f4` of the `/root/hpgw` binary included in firmware 6.9Z.

EPSS

Процентиль: 78%

0.01109

Низкий

10 Critical

CVSS3

9.9 Critical

CVSS3

Дефекты

CWE-78