Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2022-37062
HistoryAug 18, 2022 - 5:05 p.m.

CVE-2022-37062

2022-08-1817:05:48
mitre
www.cve.org
8
flir
ax8
thermal sensor
cameras
vulnerability
insecure design
improper directory access
sqlite
database
usernames
hashed passwords

AI Score

8.2

Confidence

High

EPSS

0.005

Percentile

76.9%

JSON

All FLIR AX8 thermal sensor cameras version up to and including 1.46.16 are affected by an insecure design vulnerability due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this by sending a URI that contains the path of the SQLite users database and download it. A successful exploit could allow the attacker to extract usernames and hashed passwords.

Related

nvd 1
prion 1
cve 1
attackerkb 1
zdt 1
packetstorm 1
nvd
nvd
CVE-2022-37062
2022-08-18 18:15:08
prion
prion
Design/Logic Flaw
2022-08-18 18:15:00
cve
cve
CVE-2022-37062
2022-08-18 18:15:08
attackerkb
attackerkb
CVE-2022-37061
2022-08-18 00:00:00
zdt
zdt
FLIR AX8 1.46.16 Traversal / Access Control / Command Injection / XSS Vulnerabilities
2022-08-22 00:00:00
packetstorm
packetstorm
FLIR AX8 1.46.16 Traversal / Access Control / Command Injection / XSS
2022-08-19 00:00:00

AI Score

8.2

Confidence

High

EPSS

0.005

Percentile

76.9%

JSON
Related for CVELIST:CVE-2022-37062
nvd1prion1cve1attackerkb1zdt1packetstorm1