112 matches found
CVE-2024-6831
Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to edit and/or remove views without the necessary permission due to a client-side-only check. Axis has released patched versions for the highlighted flaw. Please refer to the Axis security advisory for...
CVE-2024-6749
Seth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident report feature may expose sensitive credentials on the AXIS Camera Station windows client. If Incident report is not being used with credentials configured this flaw does not apply. Axis has released...
CVE-2024-6476
Gee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is possible for a non-admin user to gain system privileges by redirecting a file deletion upon service restart. Axis has released patched versions for the highlighted flaw. Please refer to the Axis security...
CVE-2024-6831
Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to edit and/or remove views without the necessary permission due to a client-side-only check. Axis has released patched versions for the highlighted flaw. Please refer to the Axis security advisory for...
CVE-2024-6831
Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to edit and/or remove views without the necessary permission due to a client-side-only check. Axis has released patched versions for the highlighted flaw. Please refer to the Axis security advisory for...
CVE-2024-6749
CVE-2024-6749 affects AXIS Camera Station Pro: the Incident report feature on the Windows client can expose credentials when credentials are configured for incident reporting. The issue is limited to environments where Incident report is used with credentials; if not configured, the flaw does not...
CVE-2024-6749
Seth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident report feature may expose sensitive credentials on the AXIS Camera Station windows client. If Incident report is not being used with credentials configured this flaw does not apply. Axis has released...
CVE-2024-6749
Seth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident report feature may expose sensitive credentials on the AXIS Camera Station windows client. If Incident report is not being used with credentials configured this flaw does not apply. Axis has released...
CVE-2024-6476
CVE-2024-6476 affects Axis Camera Station Pro. A non-admin user can gain system privileges by redirecting a file deletion on service restart. Root cause details are not fully provided in the available documents, but Axis has released patched versions and directs to the Axis security advisory for ...
CVE-2024-6476
Gee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is possible for a non-admin user to gain system privileges by redirecting a file deletion upon service restart. Axis has released patched versions for the highlighted flaw. Please refer to the Axis security...
AXIS Camera Station Pro 安全漏洞
AXIS Camera Station Pro is a powerful and flexible video management and access control from Axis Sweden. A security vulnerability exists in AXIS Camera Station Pro versions prior to 6.4, which stems from a client-side-only check and therefore allows editing and deletion of views without the...
AXIS Camera Station Pro 安全漏洞
AXIS Camera Station Pro is a powerful and flexible video management and access control from Axis Sweden. A security vulnerability exists in AXIS Camera Station Pro versions prior to 6.4, which originates from a non-administrative user being able to gain system privileges by redirecting file...
AXIS Camera Station Pro 安全漏洞
AXIS Camera Station Pro is a powerful and flexible video management and access control from Axis Sweden. A security vulnerability exists in AXIS Camera Station Pro versions prior to 6.4, which stems from an event reporting feature that may expose sensitive credentials on the client...
PT-2024-37845 · Axis · Axis Camera Station Pro
Name of the Vulnerable Software and Affected Versions: AXIS Camera Station affected versions not specified Description: The Incident report feature in the AXIS Camera Station windows client may expose sensitive credentials. This issue only applies if the Incident report is being used with...
PT-2024-37653 · Axis · Axis Camera Station Pro
Name of the Vulnerable Software and Affected Versions: AXIS Camera Station Pro affected versions not specified Description: A non-admin user can gain system privileges by redirecting a file deletion upon service restart. The issue was discovered by Gee-netics, a member of the AXIS Camera Station...
CVE-2023-22984
A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL...
CVE-2022-28860
An authentication downgrade in the server in Citilog 8.0 allows an attacker in a man in the middle position between the server and its smart camera Axis M1125 to achieve HTTP access to the camera...
AXIS Camera Unconfigured Password Detection
The remote host seems to be an Axis Network Camera. Initial configuration of this device has not yet been performed, allowing anyone to set the administrator password. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid123935; scriptversion"1.5"; scriptcvsdate"Date:...
AXIS M1033-W Code Execution Vulnerability (CNVD-2018-09671)
AXIS P1354 is a network camera product from Axis Sweden. AXIS P1354 with firmware version 5.90.1.1 has a security vulnerability that originates from uploading a web page without checking the file type. A remote attacker can exploit this vulnerability to upload a webshell and execute code...
AXIS M1033-W Denial of Service Vulnerability
AXIS M1033-W is a network camera product from Axis Sweden. A security vulnerability exists in the AXIS M1033-W using firmware version 5.40.5.1, which is caused by the program's failure to use reasonable protection mechanisms. The vulnerability can be exploited to cause a denial of service by usin...