HIGH🇬🇧 English

CVE-2024-45175

CVSS 8.8v3.1pub. 2024-09-05upd. 2025-09-04

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Sensitive information is stored in cleartext. It was found out that sensitive information, for example login credentials of cameras, is stored in cleartext. Thus, an attacker with filesystem access, for example exploiting a path traversal attack, has access to the login data of all configured cameras, or the configured FTP server.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • C Mor Video Surveillance

    APP
    C-Mor
    5.24016.00
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Path Traversal
CWE
Referencje

Powiązane podatności

CVE-2024-45179HIGH7.2ten sam produkt

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to insufficient input...

CVE-2024-45171HIGH8.8ten sam produkt

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user input validation,...

CVE-2024-45178HIGH7.1ten sam produkt

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user input validation,...

CVE-2024-45173HIGH8.8ten sam produkt

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper privilege management c...

CVE-2024-45174HIGH8.1ten sam produkt

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to improper validatio...