Vulnerability CVE-2022-28861


Published: 2022-07-21

Description:
The server in Citilog 8.0 allows an attacker (in a man in the middle position between the server and its smart camera Axis M1125) to see FTP credentials in a cleartext HTTP traffic. These can be used for FTP access to the server.

 References:
https://github.com/ErwanBroquaire/citilog-8.0-vulnerability
https://www.citilog.com

Copyright 2026, cxsecurity.com

 

Back to Top