CVE-2019-18340

2019-12-12T19:15:00
ID CVE-2019-18340
Type cve
Reporter cve@mitre.org
Modified 2019-12-18T00:06:00

Description

A vulnerability has been identified in SiNVR 3 Central Control Server (CCS) (all versions), SiNVR 3 Video Server (all versions). Both the SiNVR 3 Video Server and the Central Control Server (CCS) store user and device passwords by applying weak cryptography. A local attacker could exploit this vulnerability to extract the passwords from the user database and/or the device configuration files to conduct further attacks.