VYPR

M1033-W

by Axis

CVEs (2)

  • CVE-2018-9158HigApr 1, 2018
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered on AXIS M1033-W (IP camera) Firmware version 5.40.5.1 devices. They don't employ a suitable mechanism to prevent a DoS attack, which leads to a response time delay. An attacker can use the hping3 tool to perform an IPv4 flood attack, and the services are…

  • CVE-2018-9157HigApr 1, 2018
    risk 0.49cvss 7.5epss 0.03

    An issue was discovered on AXIS M1033-W (IP camera) Firmware version 5.40.5.1 devices. The upload web page doesn't verify the file type, and an attacker can upload a webshell by making a fileUpload.shtml request for a custom .shtml file, which is interpreted by the Apache HTTP…