CVE-2022-28861

The server in Citilog 8.0 allows an attacker (in a man in the middle position between the server and its smart camera Axis M1125) to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server.

MISC: https://github.com/ErwanBroquaire/citilog-8.0-vulnerability
MISC: https://www.citilog.com
MISC: https://www.citilog.com/wp-content/uploads/2023/07/CitilogSAS_information_note_2021-10-18-English.pdf
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28861

14 years
256 countries
683k users
4525k calculations
Logo www.inv-technology.com
Logo www.use-ip.co.uk
Logo www.cctvforum.com
Logo www.systemy-stech.cz
Logo ru.kedacom.com
Logo www.power-shop.gr