Lucene search
K

34 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/30 12:0 a.m.9 views

Axis Communications AXIS OS Improper Neutralization of Wildcards or Matching Symbols (CVE-2024-0054)

A researcher in the AXIS OS Bug Bounty Program has found that the VAPIX APIs locallist.cgi, createoverlay.cgi and irissetup.cgi were vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for this flaw. This plugin only works with...

6.5CVSS5.9AI score0.00572EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/30 12:0 a.m.6 views

Axis Communications AXIS OS Improper Neutralization of Wildcards or Matching Symbols (CVE-2024-0055)

A researcher in the AXIS OS Bug Bounty Program has found that the VAPIX APIs mediaclip.cgi and playclip.cgi were vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for this flaw. This plugin only works with Tenable.ot. Please...

6.5CVSS5.9AI score0.00596EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-47593

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00391EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-15857

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00572EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-15858

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00596EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:34 a.m.6 views

CVE-2024-0054

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs locallist.cgi, createoverlay.cgi and irissetup.cgi was vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for the highlighted flaw. Please...

6.5CVSS6.8AI score0.00572EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:30 a.m.5 views

CVE-2024-6509

Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi was vulnerable for file globbing which could lead to resource exhaustion of the Axis device. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security...

6.5CVSS6.9AI score0.00391EPSS
Exploits0References1
NVD
NVD
added 2024/09/10 5:15 a.m.24 views

CVE-2024-6509

Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi was vulnerable for file globbing which could lead to resource exhaustion of the Axis device. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security...

6.5CVSS0.00391EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/10 4:58 a.m.24 views

CVE-2024-6509

Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi was vulnerable for file globbing which could lead to resource exhaustion of the Axis device. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security...

6.5CVSS0.00391EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/03/28 12:0 a.m.8 views

AXIS OS < 10.12.228, 11.x < 11.9.53 DoS Vulnerability

AXIS OS is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:axis:axisos"; if...

6.5CVSS7AI score0.00596EPSS
Exploits0References1
NVD
NVD
added 2024/03/19 7:15 a.m.18 views

CVE-2024-0055

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs mediaclip.cgi and playclip.cgi was vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis...

6.5CVSS6.5AI score0.00596EPSS
Exploits0References1
OSV
OSV
added 2024/03/19 7:15 a.m.4 views

CVE-2024-0055

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs mediaclip.cgi and playclip.cgi was vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis...

6.5CVSS5.8AI score0.00596EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/19 6:39 a.m.16 views

CVE-2024-0055

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs mediaclip.cgi and playclip.cgi was vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis...

6.5CVSS6.5AI score0.00596EPSS
Exploits0References1
CVE
CVE
added 2024/03/19 6:39 a.m.93 views

CVE-2024-0055

The CVE-2024-0055 entry concerns AXIS OS where the VAPIX endpoints mediaclip.cgi and playclip.cgi are vulnerable to file globbing, enabling a resource-exhaustion (DoS) condition. Affected software is AXIS OS; the issue is fixed in patched AXIS OS versions as per Axis advisory. Connected sources c...

6.5CVSS6.5AI score0.00596EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2024/03/19 6:39 a.m.31 views

CVE-2024-0055

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs mediaclip.cgi and playclip.cgi was vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis...

6.5CVSS6.7AI score0.00596EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/19 6:35 a.m.26 views

CVE-2024-0054

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs locallist.cgi, createoverlay.cgi and irissetup.cgi was vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for the highlighted flaw. Please...

6.5CVSS6.7AI score0.00572EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/19 6:35 a.m.12 views

CVE-2024-0054

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs locallist.cgi, createoverlay.cgi and irissetup.cgi was vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for the highlighted flaw. Please...

6.5CVSS6.5AI score0.00572EPSS
Exploits0References1
CVE
CVE
added 2024/03/19 6:35 a.m.115 views

CVE-2024-0054

CVE-2024-0054 affects Axis OS: the VAPIX endpoints local_list.cgi, create_overlay.cgi and irissetup.cgi are vulnerable to file globbing, enabling a resource-exhaustion DoS. The issue is rooted in how these APIs handle globbing, with exploitation described in Axis advisories and vendor-confirmed p...

6.5CVSS6.5AI score0.00572EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/19 12:0 a.m.6 views

AXIS OS Security Vulnerability

AXIS Os is an edge device operating system from Axis Sweden. A security vulnerability exists in AXIS OS versions 6.50 through 11.8, which stems from the VAPIX APIs locallist.cgi, createoverlay.cgi, and irissetup.cgi being susceptible to a file globbing attack that can lead to resource exhaustion...

6.5CVSS6.7AI score0.00572EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/19 12:0 a.m.4 views

AXIS OS Security Vulnerability

AXIS Os is an edge device operating system from AXIS of Sweden. A security vulnerability exists in AXIS OS versions 10.12 through 11.8, which stems from the vulnerability of the VAPIX APIs mediaclip.cgi and playclip.cgi to a file globbing attack that can lead to resource exhaustion...

6.5CVSS6.7AI score0.00596EPSS
Exploits0References2
Rows per page
Query Builder