CVE-2022-29889

Name of the Vulnerable Software and Affected Versions Abode Systems, Inc. iota All-In-One Security Kit version 6.9Z

Description A hard-coded password vulnerability exists in the telnet functionality, allowing an attacker to authenticate with hard-coded credentials. This can lead to arbitrary command execution and unauthorized access to protected information through TCP-port 55023.

Recommendations For version 6.9Z, consider disabling the telnet functionality until a patch is available to prevent exploitation. Restrict access to TCP-port 55023 to minimize the risk of unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.