CVE-2019-12502 (s14_firmware)

There is a lack of CSRF countermeasures on MOBOTIX S14 MX-V4.2.1.61 cameras, as demonstrated by adding an admin account via the /admin/access URI.
Source: NIST
CVE-2019-12502 (s14_firmware)