An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices. /admin/access accepts a request to set the "aaaaa" password, considered insecure for some use cases, from a user.
References
Link | Resource |
---|---|
https://gist.github.com/llandeilocymro/7dbe3daaab6d058d609fd9a0b24301cb | Exploit Third Party Advisory |
https://gist.github.com/llandeilocymro/7dbe3daaab6d058d609fd9a0b24301cb | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:48
Type | Values Removed | Values Added |
---|---|---|
References | () https://gist.github.com/llandeilocymro/7dbe3daaab6d058d609fd9a0b24301cb - Exploit, Third Party Advisory |
Information
Published : 2019-02-09 22:29
Updated : 2024-11-21 04:48
NVD link : CVE-2019-7674
Mitre link : CVE-2019-7674
CVE.ORG link : CVE-2019-7674
JSON object : View
Products Affected
mobotix
- s14
- s14_firmware
CWE
CWE-521
Weak Password Requirements