CVE-2022-28860 Information

Description

An authentication downgrade in the server in Citilog 8.0 allows an attacker (in a man in the middle position between the server and its smart camera Axis M1125) to achieve HTTP access to the camera.

Reference

https://github.com/ErwanBroquaire/citilog-8.0-vulnerability https://www.citilog.com