VYPR
← All advisories
High severity7.5NVD Advisory· Published Oct 12, 2017· Updated May 13, 2026

CVE-2017-15290

CVE-2017-15290

Description

Mirasys Video Management System (VMS) 6.x before 6.4.6, 7.x before 7.5.15, and 8.x before 8.1.1 has a login process in which cleartext data is sent from a server to a client, and not all of this data is required for the client functionality.

Affected products

10
  • Mirasys/Video Management System10 versions
    cpe:2.3:a:mirasys:video_management_system:6.2.5:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:mirasys:video_management_system:6.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:7.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:7.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:7.3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:7.5.11:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:7.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:7.5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:7.5.7:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:8.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mirasys:video_management_system:8.1.0:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.