CVE-2019-19291

A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0), SiNVR/SiVMS Video Server (All versions < V5.0.0). The FTP services of the SiVMS/SiNVR Video Server and the Control Center Server (CCS) maintain log files that store login credentials in cleartext. In configurations where the FTP service is enabled, authenticated remote attackers could extract login credentials of other users of the service.

MISC: https://cert-portal.siemens.com/productcert/pdf/ssa-761844.pdf
MISC: https://cert-portal.siemens.com/productcert/pdf/ssa-844761.pdf
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19291

15 years
257 countries
725k users
4730k calculations
Logo reolink.com
Logo www.cctvforum.com
Logo www.elsec.cz
Logo www.kelcom.cz
Logo ru.kedacom.com
Logo sectech.co.nz