An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login attempt discloses whether the username or password is wrong, helping an attacker to enumerate usernames. This can make a brute-force attack easier.
CPE | Name | Operator | Version |
---|---|---|---|
aurora_vision | lt | 2.97.10 |