CVE-2024-45175

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Sensitive information is stored in cleartext. It was found out that sensitive information, for example login credentials of cameras, is stored in cleartext. Thus, an attacker with filesystem access, for example exploiting a path traversal attack, has access to the login data of all configured cameras, or the configured FTP server.
Configurations

No configuration.

History

05 Sep 2024, 18:35

Type Values Removed Values Added
CWE CWE-22
CWE-312
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8

05 Sep 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-05 16:15

Updated : 2024-09-05 18:35


NVD link : CVE-2024-45175

Mitre link : CVE-2024-45175

CVE.ORG link : CVE-2024-45175


JSON object : View

Products Affected

No product.

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-312

Cleartext Storage of Sensitive Information