CVE-2019-12502
There is a lack of CSRF countermeasures on MOBOTIX S14 MX-V4.2.1.61 cameras, as demonstrated by adding an admin account via the /admin/access URI.
MISC: https://gist.github.com/llandeilocymro/55a61e3730cdef56ab5806a677ba0891
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12502
published: 31. 5. 2019
