PT-2022-19267 · Axis · Axis M1125

Published

2022-07-21

Updated

2023-08-08

CVE-2022-28860

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Citilog version 8.0

Description An authentication downgrade in the server allows an attacker, in a man-in-the-middle position between the server and its smart camera Axis M1125, to achieve HTTP access to the camera.

Recommendations For Citilog version 8.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-28860

Affected Products

Axis M1125

PT-2022-19267 · Axis · Axis M1125

CVE-2022-28860

Related Identifiers

Affected Products

References · 7