CVE-2019-19291

2020-03-10T20:15:00
ID CVE-2019-19291
Type cve
Reporter cve@mitre.org
Modified 2020-03-12T13:46:00

Description

A vulnerability has been identified in SiNVR 3 Central Control Server (CCS) (all versions), SiNVR 3 Video Server (all versions). The FTP service of the SiNVR 3 Central Control Server (CCS) maintains a log file that stores login credentials in cleartext. In configurations where the FTP service is enabled, authenticated remote attackers could extract login credentials of other users of the service.