VYPR

AXIS OS

by Axis

CVEs (31)

  • CVE-2025-7622MedAug 12, 2025
    risk 0.37cvss 5.7epss 0.00

    During an internal security assessment, a Server-Side Request Forgery (SSRF) vulnerability that allowed an authenticated attacker to access internal resources on the server was discovered.

  • CVE-2026-1185MedMay 12, 2026
    risk 0.35cvss 5.4epss 0.00

    A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. This vulnerability can only be exploited if an attacker can log in to the Axis device using SSH.

  • CVE-2023-5800MedFeb 5, 2024
    risk 0.35cvss 5.4epss 0.01

    Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or…

  • CVE-2024-47262MedMar 4, 2025
    risk 0.34cvss 5.3epss 0.00

    Dzmitry Lukyanenka, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API param.cgi was vulnerable to a race condition attack allowing for an attacker to block access to the web interface of the Axis device. Other API endpoints or services not making use of…

  • CVE-2024-0066MedJun 18, 2024
    risk 0.34cvss 5.3epss 0.00

    Johan Fagerström, member of the AXIS OS Bug Bounty Program, has found that a O3C feature may expose sensitive traffic between the client (Axis device) and (O3C) server. If O3C is not being used this flaw does not apply. Axis has released patched AXIS OS versions for the…

  • CVE-2023-21404MedMay 8, 2023
    risk 0.34cvss 5.3epss 0.00

    AXIS OS 11.0.X - 11.3.x use a static RSA key in legacy LUA-components to protect Axis-specific source code. The static RSA key is not used in any other secure communication nor can it be used to compromise the device or any customer data.

  • CVE-2024-8772MedNov 26, 2024
    risk 0.28cvss 4.3epss 0.00

    51l3nc3, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API managedoverlayimages.cgi was vulnerable to a race condition attack allowing for an attacker to block access to the overlay configuration page in the web interface of the Axis device. This flaw can…

  • CVE-2024-0067MedSep 10, 2024
    risk 0.28cvss 4.3epss 0.00

    Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API ledlimit.cgi was vulnerable for path traversal attacks allowing to list folder/file names on the local file system of the Axis device. Axis has released patched AXIS OS versions for the…

  • CVE-2024-8160LowNov 26, 2024
    risk 0.25cvss 3.8epss 0.01

    Erik de Jong, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API ftptest.cgi did not have a sufficient input validation allowing for a possible command injection leading to being able to transfer files from/to the Axis device. This flaw can only be exploited…

  • CVE-2024-47259LowMar 4, 2025
    risk 0.23cvss 3.5epss 0.01

    Girishunawane, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi did not have a sufficient input validation allowing for a possible command injection leading to being able to transfer files to the Axis device with the purpose to exhaust…

  • CVE-2025-8998LowNov 11, 2025
    risk 0.20cvss 3.1epss 0.00

    It was possible to upload files with a specific name to a temporary directory, which may result in process crashes and impact usability. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account.

Page 2 of 2