We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-45175



Assignermitre
Reserved2024-08-22
Published2024-09-05
Updated2024-09-06

Description

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Sensitive information is stored in cleartext. It was found out that sensitive information, for example login credentials of cameras, is stored in cleartext. Thus, an attacker with filesystem access, for example exploiting a path traversal attack, has access to the login data of all configured cameras, or the configured FTP server.

References

https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-028.txt

https://www.syss.de/pentest-blog/mehrere-sicherheitsschwachstellen-in-videoueberwachungssoftware-c-mor-syss-2024-020-bis-030

cve.org CVE-2024-45175

nvd.nist.gov CVE-2024-45175

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-45175
Subscribe to our newsletter to learn more about our work.