CVE-2022-28861

Published
View on NVD ↗
CVSS v3
5.9
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT

Description

The server in Citilog 8.0 allows an attacker (in a man in the middle position between the server and its smart camera Axis M1125) to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server.

ErwanBroquaire/citilog-8.0-vulnerability
ErwanBroquaire/citilog-8.0-vulnerabilityUNAVAILABLE
Description of a vulnerability discovered on citilog servers in version 8.0
GitHubGitHub