9 matches found
CVE-2018-10661
Axis IP Cameras across multiple models are affected by CVE-2018-10661, which enables an authentication bypass of access control. The connected sources describe an exploit path where an unauthenticated request bypasses the .srv functionality, enabling unauthenticated access to the device bus via D...
CVE-2018-10662
CVE-2018-10662 affects Axis IP Cameras, described as an Exposed Insecure Interface. Connected sources document a multi-stage exploit path: an unauthenticated bypass of .srv functionality enabling a Parhand DBus command flow, leading to potential root command execution (Metasploit module and Explo...
CVE-2018-10664
Axis IP Cameras running firmware with Axis httpd service are affected by CVE-2018-10664 due to memory corruption in the httpd process. The issue is documented as a memory corruption vulnerability in Axis IP Camera devices. ThreatPost describes a broader chain of vulnerabilities in Axis cameras th...
CVE-2018-10660
CVE-2018-10660 affects Axis Network Cameras. The connected sources confirm a shell command injection vulnerability in multiple Axis IP Camera models, enabling unauthenticated remote command execution through the .srv-to-parhand flow in the device’s UI/API, potentially giving root/system-level acc...
CVE-2018-10658
Axis IP Cameras are affected by a memory corruption vulnerability (CVE-2018-10658) that can cause a denial of service (crash) via code paths involving libdbus-send.so or similar. Reports describe exploitation potential through the device’s dbus interfaces, with root-level access scenarios describ...
CVE-2018-10659
Axis IP Cameras are affected by CVE-2018-10659, a memory corruption vulnerability in the camera’s software path that can cause a denial of service (crash) when a crafted command triggers an undefined ARM instruction. The issue is documented across multiple sources (NVD/NIST, Axis advisory materia...
CVE-2018-10663
Axis IP Cameras (multiple models) are affected by CVE-2018-10663, described as an Incorrect Size Calculation leading to information exposure. Public reports and Nessus/OpenVAS entries corroborate additional related vulns in the same product family. Remediation: update to Axis firmware via Axis De...
CVE-2023-21405
CVE-2023-21405 affects Axis Network Door Controllers and Axis Network Intercoms via OSDP; the vulnerability is a crash in the OSDP message parser that crashes the pacsiod process, causing temporary unavailability of door-controlling functionality (doors cannot be opened or closed). The issue is d...
CVE-2023-21406
The CVE-2023-21406 issue affects Axis A1001 door controllers when using OSDP. A heap-based buffer overflow in the pacsiod process handling OSDP communication allows writing outside the allocated heap buffer by appending invalid data to an OSDP message, potentially enabling arbitrary code executio...