VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 25, 2022· Updated Apr 15, 2025

CVE-2022-35885

CVE-2022-35885

Description

Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6.9X. A specially-crafted HTTP request can lead to memory corruption, information disclosure and denial of service. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.This vulnerability arises from format string injection via the wpapsk_hex HTTP parameter, as used within the /action/wirelessConnect handler.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Format string injection in Abode iota security kit's wirelessConnect handler leads to memory corruption, info disclosure, and DoS.

Vulnerability

Four format string injection vulnerabilities exist in the /action/wirelessConnect functionality of Abode Systems iota All-In-One Security Kit versions 6.9Z and 6.9X. The vulnerability is triggered via the wpapsk_hex HTTP parameter, which is passed to a format string function (log) that wraps vsnprintf, allowing an attacker to inject format specifiers [1].

Exploitation

An attacker must be authenticated to the device and send a specially-crafted HTTP POST request to /action/wirelessConnect with a malicious format string payload in the wpapsk_hex parameter. No user interaction is required beyond authentication [1].

Impact

Successful exploitation can lead to memory corruption, information disclosure (e.g., stack memory leak), and denial of service. The attacker may gain the ability to write arbitrary memory, potentially leading to further compromise [1].

Mitigation

No official fix has been released as of the publication date (2022-10-25). Users should monitor vendor advisories for updates. The affected versions are 6.9Z and 6.9X [1].

References
  1. TALOS-2022-1585 || Cisco Talos Intelligence Group

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.