Critical severity9.8NVD Advisory· Published Apr 27, 2021· Updated Jun 17, 2026
CVE-2020-22001
CVE-2020-22001
Description
HomeAutomation 3.3.2 suffers from an authentication bypass vulnerability when spoofing client IP address using the X-Forwarded-For header with the local (loopback) IP address value allowing remote control of the smart home solution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- HomeAutomation/HomeAutomationdescription
- Range: =3.3.2
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/47807nvdExploitThird Party AdvisoryVDB Entry
- www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5557.phpnvdExploitThird Party Advisory
- cwe.mitre.org/data/definitions/290.htmlnvdTechnical Description
News mentions
0No linked articles in our index yet.