216.73.217.139

CVE-2024-4425

· Published 14/05/2024 15:43 · Modified 14/05/2024 16:11

Labels: CVE-2024-4425 2024-05-14CVE-2024-4425CWE-256[email protected]

Essential information

Published
14/05/2024 15:43
Modified
14/05/2024 16:11
Author
Creator
CISA KEV
No
CWE

Description

The access control in CemiPark software stores integration (e.g. FTP or SIP) credentials in plain-text. An attacker who gained unauthorized access to the device can retrieve clear text passwords used by the system.This issue affects CemiPark software: 4.5, 4.7, 5.03 and potentially others. The vendor refused to provide the specific range of affected products.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References