CVE-2021-31989

2021-08-2518:29:41

Axis

www.cve.org

cve-2021-31989

windows task manager

memory dump

axis devices

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

39.4%

JSON

A user with permission to log on to the machine hosting the AXIS Device Manager client could under certain conditions extract a memory dump from the built-in Windows Task Manager application. The memory dump may potentially contain credentials of connected Axis devices.

CNA Affected

[
  {
    "product": "Axis Device Manager",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "From Axis Device Manager 5.00.010"
      }
    ]
  }
]

References

www.axis.com/files/tech_notes/CVE-2021-31989.pdf