20 matches found
EUVD-2022-33298
Malicious code in bioql PyPI...
EUVD-2022-33297
Malicious code in bioql PyPI...
CVE-2022-28860
An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...
CVE-2022-28861
The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...
CVE-2022-28861
The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...
CVE-2022-28861
The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...
CVE-2022-28861
The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...
CVE-2022-28860
An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...
CVE-2022-28860
An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...
CVE-2022-28860
An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...
Command injection
The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...
Authentication flaw
An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...
CVE-2022-28860
The CVE-2022-28860 entry describes an authentication downgrade in the Citilog 8.0 server when communicating with the Axis M1125 smart camera, allowing an attacker in a man‑in‑the‑middle position to gain HTTP access to the camera. Affected component: Citilog 8.0 server; vulnerable path involves th...
CVE-2022-28861
Citilog 8.0 is affected. The vulnerability arises in the server component that communicates with the Axis M1125 camera, enabling a man-in-the-middle adversary to observe FTP credentials in cleartext HTTP traffic between the server and the camera. Impact is credential exposure enabling FTP access ...
Citilog 安全漏洞
Citilog is a video analytics and artificial intelligence application for traffic management solutions from Citilog. A security vulnerability exists in Citilog version 8.0, which can be exploited by an attacker to view FTP credentials as plaintext HTTP traffic...
PT-2022-19267 · Axis · Axis M1125
Name of the Vulnerable Software and Affected Versions: Citilog version 8.0 Description: An authentication downgrade in the server allows an attacker, in a man-in-the-middle position between the server and its smart camera Axis M1125, to achieve HTTP access to the camera. Recommendations: For...
Citilog 安全漏洞
Citilog is a video analytics and artificial intelligence application for traffic management solutions from Citilog. A security vulnerability exists in Citilog version 8.0 that stems from the presence of an authentication degradation issue. An attacker could exploit the vulnerability to achieve HT...
CVE-2022-28861
The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...
CVE-2022-28860
An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...
PT-2022-19268 · Axis · Axis M1125
Name of the Vulnerable Software and Affected Versions: Citilog version 8.0 Description: The server in Citilog allows an attacker, in a man-in-the-middle position between the server and its smart camera Axis M1125, to see FTP credentials in cleartext HTTP traffic. These credentials can be used for...