Unrated severityNVD Advisory· Published Apr 8, 2025· Updated Apr 8, 2025
CVE-2025-0361
CVE-2025-0361
Description
During an annual penetration test conducted on behalf of Axis Communications, Truesec discovered a flaw in the VAPIX Device Configuration framework that allowed for unauthenticated username enumeration through the VAPIX Device Configuration SSH Management API.
Affected products
2- Axis Communications AB/AXIS OSv5Range: 11.11.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.