VYPR

AXIS Communications

by Axis

CVEs (2)

  • CVE-2015-8255HigApr 10, 2017
    risk 0.60cvss 8.8epss 0.02

    AXIS Communications products allow CSRF, as demonstrated by admin/pwdgrp.cgi, vaconfig.cgi, and admin/local_del.cgi.

  • CVE-2015-8258HigApr 10, 2017
    risk 0.52cvss 7.5epss 0.09

    AXIS Communications products with firmware through 5.80.x allow remote attackers to modify arbitrary files as root via vectors involving Open Script Editor, aka a "resource injection vulnerability."