Unrated severityNVD Advisory· Published Feb 10, 2026· Updated Feb 26, 2026

CVE-2025-11142

Description

The VAPIX API mediaclip.cgi that did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator- privileged service account.

Affected products

Axis Communications AB/AXIS OSv5
Range: 12.6.54

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.axis.com/dam/public/18/0e/90/cve-2025-11142pdf-en-US-519291.pdfmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000