Brandon Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact....
8.8CVSS
8.6AI Score
0.001EPSS
An issue was discovered in the httpd process in multiple models of Axis IP Cameras. There is Memory...
7.5CVSS
8.5AI Score
0.013EPSS
An issue was discovered in multiple models of Axis IP Cameras. There is an Incorrect Size...
7.5CVSS
8.5AI Score
0.004EPSS
There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which allows remote attackers to cause a denial of service (crash) by sending a crafted command which will result in a code path that calls the UND undefined ARM...
7.5CVSS
8.3AI Score
0.006EPSS
An issue was discovered in multiple models of Axis IP Cameras. There is an Exposed Insecure...
There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which causes a denial of service (crash). The crash arises from code inside libdbus-send.so shared object or...
7.5CVSS
8.4AI Score
0.004EPSS
An issue was discovered in multiple models of Axis IP Cameras. There is a bypass of access...
An issue was discovered in multiple models of Axis IP Cameras. There is Shell Command...
9.8CVSS
9.4AI Score
0.092EPSS