EUVD-2022-33297

Malicious code in bioql PyPI...

EUVD-2022-33298

Malicious code in bioql PyPI...

CVE-2022-28860

An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...

CVE-2022-28861

The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...

CVE-2022-28860

An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...

CVE-2022-28861

The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...

CVE-2022-28861

The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...

CVE-2022-28860

An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...

CVE-2022-28860

An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...

CVE-2022-28861

The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...

Command injection

The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...

Authentication flaw

An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...

Citilog 安全漏洞

Citilog is a video analytics and artificial intelligence application for traffic management solutions from Citilog. A security vulnerability exists in Citilog version 8.0 that stems from the presence of an authentication degradation issue. An attacker could exploit the vulnerability to achieve HT...

CVE-2022-28861

Citilog 8.0 is affected. The vulnerability arises in the server component that communicates with the Axis M1125 camera, enabling a man-in-the-middle adversary to observe FTP credentials in cleartext HTTP traffic between the server and the camera. Impact is credential exposure enabling FTP access ...

PT-2022-19268 · Axis · Axis M1125

Name of the Vulnerable Software and Affected Versions: Citilog version 8.0 Description: The server in Citilog allows an attacker, in a man-in-the-middle position between the server and its smart camera Axis M1125, to see FTP credentials in cleartext HTTP traffic. These credentials can be used for...

PT-2022-19267 · Axis · Axis M1125

Name of the Vulnerable Software and Affected Versions: Citilog version 8.0 Description: An authentication downgrade in the server allows an attacker, in a man-in-the-middle position between the server and its smart camera Axis M1125, to achieve HTTP access to the camera. Recommendations: For...

CVE-2022-28861

The server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server...

CVE-2022-28860

The CVE-2022-28860 entry describes an authentication downgrade in the Citilog 8.0 server when communicating with the Axis M1125 smart camera, allowing an attacker in a man‑in‑the‑middle position to gain HTTP access to the camera. Affected component: Citilog 8.0 server; vulnerable path involves th...

CVE-2022-28860

An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...

Citilog 安全漏洞

Citilog is a video analytics and artificial intelligence application for traffic management solutions from Citilog. A security vulnerability exists in Citilog version 8.0, which can be exploited by an attacker to view FTP credentials as plaintext HTTP traffic...