Unrated severityNVD Advisory· Published Aug 29, 2022· Updated Feb 13, 2025
CVE-2022-37680
CVE-2022-37680
Description
An improper authentication for critical function issue in Hitachi Kokusai Electric Network products for monitoring system (Camera, Decoder and Encoder) and bellow allows attckers to remotely reboot the device via a crafted POST request to the endpoint /ptipupgrade.cgi. Security information ID hitachi-sec-2022-001 contains fixes for the issue.
Affected products
2- Hitachi Kokusai Electric/Network productsdescription
Patches
Vulnerability mechanics
References
2- gist.github.com/Nwqda/5efea18c9142c6a966d85c6be2c0c2b5mitrethird-party-advisorybroken-link
- www.hitachi-kokusai.co.jp/global/en/products/info/vulnerable/hitachi-sec-2022-001/index.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.