CVE-2019-7674

An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices. /admin/access accepts a request to set the "aaaaa" password, considered insecure for some use cases, from a user.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:mobotix:s14_firmware:mx-v4.2.1.61:*:*:*:*:*:*:*
cpe:2.3:h:mobotix:s14:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:48

Type Values Removed Values Added
References () https://gist.github.com/llandeilocymro/7dbe3daaab6d058d609fd9a0b24301cb - Exploit, Third Party Advisory () https://gist.github.com/llandeilocymro/7dbe3daaab6d058d609fd9a0b24301cb - Exploit, Third Party Advisory

Information

Published : 2019-02-09 22:29

Updated : 2024-11-21 04:48


NVD link : CVE-2019-7674

Mitre link : CVE-2019-7674

CVE.ORG link : CVE-2019-7674


JSON object : View

Products Affected

mobotix

  • s14
  • s14_firmware
CWE
CWE-521

Weak Password Requirements