Insufficiently protected credentials in Control Center

#VU63585 Insufficiently protected credentials in Control Center

Published: 2022-05-24

Vulnerability identifier: #VU63585

Vulnerability risk: Medium

CVSSv3.1: 7.1 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-30018

CWE-ID: CWE-522

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Control Center
Client/Desktop applications / Other client software

Vendor: Mobotix

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to insufficiently protected credentials within the MxCC.ini config file. A remote user can gain admin access to the software and access to recordings/recording locations.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Control Center: 2.5.4.5

External links
http://github.com/PurplePetrus/MxCC_Credential-Storage_issue/blob/main/MxCC_improper_credential_storage

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Insufficiently protected credentials in Mobotix Control Center (MxCC)