Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2024/02/28 12:0 a.m.16 views

AXIS OS RCE Vulnerability (Feb 2024)

AXIS OS is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:axis:axisos"; if...

8.8CVSS8AI score0.00684EPSS
Exploits0References1
NVD
NVD
added 2024/02/05 6:15 a.m.29 views

CVE-2023-5800

Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API createoverlay.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service...

8.8CVSS6.4AI score0.00684EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/05 5:20 a.m.2 views

CVE-2023-5800 Insufficient input validation in VAPIX API create_overlay.cgi

Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API createoverlay.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service...

5.4CVSS7.1AI score0.00684EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/05 5:20 a.m.27 views

CVE-2023-5800 Insufficient input validation in VAPIX API create_overlay.cgi

Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API createoverlay.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service...

5.4CVSS8.9AI score0.00684EPSS
Exploits0References1
Rows per page
Query Builder