VYPR

Citilog

by Citilog

CVEs (2)

  • CVE-2022-28861MedJul 21, 2022
    risk 0.38cvss 5.9epss 0.00

    The server in Citilog 8.0 allows an attacker (in a man in the middle position between the server and its smart camera Axis M1125) to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server.

  • CVE-2022-28860MedJul 21, 2022
    risk 0.38cvss 5.9epss 0.01

    An authentication downgrade in the server in Citilog 8.0 allows an attacker (in a man in the middle position between the server and its smart camera Axis M1125) to achieve HTTP access to the camera.