Connected IO v2.1.0 and prior has an argument injection vulnerability in its iptables command message in its communication protocol, enabling attackers to execute arbitrary OS commands on devices.
https://www.connectedio.com/products/routers
https://claroty.com/team82/disclosure-dashboard/cve-2023-33376