CVE-2022-30620

Name of the Vulnerable Software and Affected Versions Cellinx Camera (affected versions not specified)

Description The issue allows an attacker with web access to elevate privileges from guest to administrative by modifying specific cookie values, including is admin and showConfig, enabling changes to various camera configurations.

Recommendations For Cellinx Camera, consider disabling guest access until a fix is available to prevent privilege escalation. As a temporary workaround, restrict modifications to camera configurations to minimize the risk of exploitation. Avoid using the is admin and showConfig cookie values in the affected API endpoint until the issue is resolved.