Vulnerabilidades em Axis Communications AB
78 resultadosCVE-2024-6831MEDIUMSeth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to edit and/or remove views without the necesEPSS 0.2%CVE-2025-7622MEDIUMDuring an internal security assessment, a Server-Side Request Forgery (SSRF) vulnerability that allowed an authenticated attacker to access EPSS 0.2%CVE-2025-30027MEDIUMAn ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vulnerability can only bEPSS 0.1%CVE-2025-11547HIGHAXIS Camera Station Pro contained a flaw to perform a privilege escalation attack on the server as a non-admin user.EPSS 0.1%CVE-2024-6749MEDIUMSeth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident report feature may expose sensitive credenEPSS 0.1%CVE-2025-0360HIGHDuring an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the VAPIX Device Configuration fraEPSS 0.1%CVE-2025-3892MEDIUMACAP applications can be executed with elevated privileges, potentially leading to privilege escalation. This vulnerability can only be explEPSS 0.1%CVE-2025-5454MEDIUMAn ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escaEPSS 0.1%CVE-2025-0359HIGHDuring an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the ACAP Application framework thaEPSS 0.1%CVE-2025-4645MEDIUMAn ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vulnerability can only bEPSS 0.1%CVE-2026-0804MEDIUMAn ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escaEPSS 0.1%CVE-2024-6476MEDIUMGee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is possible for a non-admin user to gain system priviEPSS 0.1%CVE-2025-6298MEDIUMACAP applications can gain elevated privileges due to improper input validation, potentially leading to privilege escalation. This vulnerabiEPSS 0.1%CVE-2025-8108MEDIUMAn ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vEPSS 0.1%CVE-2025-10714HIGHAXIS Optimizer was vulnerable to an unquoted search path vulnerability, which could potentially lead to privilege escalation within MicrosofEPSS 0.1%CVE-2025-9055MEDIUMThe VAPIX Edge storage API that allowed a privilege escalation, enabling a VAPIX administrator-privileged user to gain Linux Root privilegesEPSS 0.1%CVE-2026-0541MEDIUMACAP applications can gain elevated privileges due to improper input validation during the installation process, potentially leading to privEPSS 0.1%CVE-2025-6571MEDIUMA 3rd-party component exposed its password in process arguments, allowing for low-privileged users to access it.EPSS 0.1%