An authentication bypass vulnerability exists in the web interface /action/factory* functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP header can lead to authentication bypass. An attacker can send an HTTP request to trigger this vulnerability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published: 2022-10-25T16:33:35.199748Z

Updated: 2024-09-16T18:23:32.090Z

Reserved: 2022-06-13T00:00:00

Link: CVE-2022-29477

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-10-25T17:15:51.810

Modified: 2024-11-21T06:59:09.327

Link: CVE-2022-29477

cve-icon Redhat

No data.