Vulnerability CVE-2024-4425


Published: 2024-05-14

Description:
The access control in CemiPark software stores integration (e.g. FTP or SIP) credentials in plain-text. An attacker who gained unauthorized access to the device can retrieve clear text passwords used by the system.This issue affects CemiPark software: 4.5, 4.7, 5.03 and potentially others. The vendor refused to provide the specific range of affected products.

 References:
https://cert.pl/en/posts/2024/05/CVE-2024-4423/
https://cert.pl/posts/2024/05/CVE-2024-4423/
http://cemi.pl/

Copyright 2026, cxsecurity.com

 

Back to Top