CVE-2020-8105: Command Execution due to unsanitized input
First published: Mon Dec 20 2021(Updated: )
OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an attacker to inject commands and gain root access. This issue affects: Abode iota All-In-One Security Kit versions prior to 1.0.2.23_6.9V_dev_t2_homekit_RF_2.0.19_s2_kvsABODE oz.
Credit: cve-requests@bitdefender.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Goabode Iota All-in-one Security Kit Firmware | <1.0.2.23_6.9v_dev_t2_homekit_rf_2.0.19_s2_kvsabode_oz | |
| Goabode Iota All-in-one Security Kit |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-8105?
CVE-2020-8105 is an OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit.
How does CVE-2020-8105 impact Abode iota All-In-One Security Kit?
CVE-2020-8105 allows an attacker to inject commands and gain root access.
What versions of Abode iota All-In-One Security Kit are affected by CVE-2020-8105?
Versions of Abode iota All-In-One Security Kit prior to 1.0.2.23_6.9V_dev_t2_homekit_RF_2.0.19_s2_kvsABODE oz are affected by CVE-2020-8105.
What is the severity of CVE-2020-8105?
CVE-2020-8105 has a severity rating of 7.8 (Critical).
How can I fix CVE-2020-8105?
To fix CVE-2020-8105, update your Abode iota All-In-One Security Kit to version 1.0.2.23_6.9V_dev_t2_homekit_RF_2.0.19_s2_kvsABODE oz or later.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/references
- agent/author
- agent/last-modified-date
- agent/severity
- agent/description
- agent/event
- agent/first-publish-date
- agent/tags
- vendor/goabode
- canonical/goabode iota all-in-one security kit firmware
- canonical/goabode iota all-in-one security kit