Improper Initialization Vulnerability in EZVIZ CS-C6N-A0-1C2WFR Allows Unauthorized Access to Encrypted Admin Password

Improper Initialization Vulnerability in EZVIZ CS-C6N-A0-1C2WFR Allows Unauthorized Access to Encrypted Admin Password

CVE-2022-2472 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Improper Initialization vulnerability in the local server component of EZVIZ CS-C6N-A0-1C2WFR allows a local attacker to read the contents of the memory space containing the encrypted admin password. This issue affects: EZVIZ CS-C6N-A0-1C2WFR versions prior to 5.3.0 build 220428.

Learn more about our Cis Benchmark Audit For Server Software.