VYPR

Vendor CVEs

Axis

All CVEs

99 total · sorted by risk
  • CVE-2018-10660CriJun 26, 2018
    risk 0.73cvss 9.8epss 0.82

    An issue was discovered in multiple models of Axis IP Cameras. There is Shell Command Injection.

  • CVE-2015-8257HigMay 2, 2017
    risk 0.62cvss 8.8epss 0.18

    The devtools.sh script in AXIS network cameras allows remote authenticated users to execute arbitrary commands via shell metacharacters in the app parameter to (1) app_license.shtml, (2) app_license_custom.shtml, (3) app_index.shtml, or (4) app_params.shtml.

  • CVE-2015-8255HigApr 10, 2017
    risk 0.60cvss 8.8epss 0.02

    AXIS Communications products allow CSRF, as demonstrated by admin/pwdgrp.cgi, vaconfig.cgi, and admin/local_del.cgi.

  • CVE-2015-8258HigApr 10, 2017
    risk 0.52cvss 7.5epss 0.09

    AXIS Communications products with firmware through 5.80.x allow remote attackers to modify arbitrary files as root via vectors involving Open Script Editor, aka a "resource injection vulnerability."

  • CVE-2024-47257HigNov 26, 2024
    risk 0.49cvss 7.5epss 0.00

    Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet frames which could lead to the Axis device becoming unavailable in the network. Axis has released patched AXIS OS versions for the highlighted flaw for products that are still…

  • CVE-2018-10664HigJun 26, 2018
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in the httpd process in multiple models of Axis IP Cameras. There is Memory Corruption.

  • CVE-2018-10659HigJun 26, 2018
    risk 0.49cvss 7.5epss 0.02

    There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which allows remote attackers to cause a denial of service (crash) by sending a crafted command which will result in a code path that calls the UND undefined ARM instruction.

  • CVE-2018-10658HigJun 26, 2018
    risk 0.49cvss 7.5epss 0.02

    There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which causes a denial of service (crash). The crash arises from code inside libdbus-send.so shared object or similar.

  • CVE-2018-9158HigApr 1, 2018
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered on AXIS M1033-W (IP camera) Firmware version 5.40.5.1 devices. They don't employ a suitable mechanism to prevent a DoS attack, which leads to a response time delay. An attacker can use the hping3 tool to perform an IPv4 flood attack, and the services are…

  • CVE-2018-9157HigApr 1, 2018
    risk 0.49cvss 7.5epss 0.03

    An issue was discovered on AXIS M1033-W (IP camera) Firmware version 5.40.5.1 devices. The upload web page doesn't verify the file type, and an attacker can upload a webshell by making a fileUpload.shtml request for a custom .shtml file, which is interpreted by the Apache HTTP…

  • CVE-2018-9156HigApr 1, 2018
    risk 0.49cvss 7.5epss 0.04

    An issue was discovered on AXIS P1354 (IP camera) Firmware version 5.90.1.1 devices. The upload web page doesn't verify the file type, and an attacker can upload a webshell by making a fileUpload.shtml request for a custom .shtml file, which is interpreted by the Apache HTTP…

  • CVE-2015-8256MedApr 17, 2017
    risk 0.47cvss 6.1epss 0.51

    Multiple cross-site scripting (XSS) vulnerabilities in Axis network cameras.

  • CVE-2026-0804MedMay 12, 2026
    risk 0.44cvss 6.7epss 0.00

    An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications,…

  • CVE-2026-0541MedMay 12, 2026
    risk 0.44cvss 6.7epss 0.00

    ACAP applications can gain elevated privileges due to improper input validation during the installation process, potentially leading to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP…

  • CVE-2025-9055MedNov 11, 2025
    risk 0.42cvss 6.4epss 0.00

    The VAPIX Edge storage API that allowed a privilege escalation, enabling a VAPIX administrator-privileged user to gain Linux Root privileges. This flaw can only be exploited after authenticating with an administrator-privileged service account.

  • CVE-2024-47260MedMar 4, 2025
    risk 0.42cvss 6.5epss 0.00

    51l3nc3, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API mediaclip.cgi did not have a sufficient input validation allowing for uploading more audio clips then designed resulting in the Axis device running out of memory.  Axis has released patched AXIS OS…

  • CVE-2024-6509MedSep 10, 2024
    risk 0.42cvss 6.5epss 0.00

    Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi was vulnerable for file globbing which could lead to resource exhaustion of the Axis device. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to…

  • CVE-2024-6173MedSep 10, 2024
    risk 0.42cvss 6.5epss 0.00

    51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API parameter allowed the use of arbitrary values allowing for an attacker to block access to the guard tour configuration page in the web interface of the Axis device. Axis has released…

  • CVE-2024-0054MedMar 19, 2024
    risk 0.42cvss 6.5epss 0.01

    Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs local_list.cgi, create_overlay.cgi and irissetup.cgi was vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for the…

  • CVE-2024-6749MedNov 26, 2024
    risk 0.41cvss 6.3epss 0.00

    Seth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident report feature may expose sensitive credentials on the AXIS Camera Station windows client. If Incident report is not being used with credentials configured this flaw does not apply.…

  • CVE-2024-7784MedSep 10, 2024
    risk 0.40cvss 6.1epss 0.00

    During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the protection for device tampering (commonly known as Secure Boot) in AXIS OS making it vulnerable to a sophisticated attack to bypass this protection. To Axis' knowledge, there are no…

  • CVE-2017-15885MedOct 25, 2017
    risk 0.40cvss 6.1epss 0.01

    Reflected XSS in the web administration portal on the Axis 2100 Network Camera 2.03 allows an attacker to execute arbitrary JavaScript via the conf_Layout_OwnTitle parameter to view/view.shtml. NOTE: this might overlap CVE-2007-5214.

  • CVE-2017-12413MedAug 4, 2017
    risk 0.40cvss 6.1epss 0.01

    AXIS 2100 devices 2.43 have XSS via the URI, possibly related to admin/admin.shtml.

  • CVE-2026-0802MedMay 12, 2026
    risk 0.39cvss 6.0epss 0.00

    An ACAP configuration file lacked sufficient input validation, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and…

  • CVE-2026-1185MedMay 12, 2026
    risk 0.35cvss 5.4epss 0.00

    A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. This vulnerability can only be exploited if an attacker can log in to the Axis device using SSH.

  • CVE-2024-47262MedMar 4, 2025
    risk 0.34cvss 5.3epss 0.00

    Dzmitry Lukyanenka, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API param.cgi was vulnerable to a race condition attack allowing for an attacker to block access to the web interface of the Axis device. Other API endpoints or services not making use of…

  • CVE-2024-0066MedJun 18, 2024
    risk 0.34cvss 5.3epss 0.00

    Johan Fagerström, member of the AXIS OS Bug Bounty Program, has found that a O3C feature may expose sensitive traffic between the client (Axis device) and (O3C) server. If O3C is not being used this flaw does not apply. Axis has released patched AXIS OS versions for the…

  • CVE-2024-6831MedNov 26, 2024
    risk 0.29cvss 4.4epss 0.00

    Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to edit and/or remove views without the necessary permission due to a client-side-only check. Axis has released patched versions for the highlighted flaw. Please refer to the Axis…

  • CVE-2025-9524MedNov 11, 2025
    risk 0.28cvss 4.3epss 0.00

    The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes and impact usability. This vulnerability can only be exploited after authenticating with a viewer- operator- or administrator-privileged service account.

  • CVE-2025-0325MedJun 2, 2025
    risk 0.28cvss 4.3epss 0.00

    A Guard Tour VAPIX API parameter allowed the use of arbitrary values and can be incorrectly called, allowing an attacker to block access to the guard tour configuration page in the web interface of the Axis device.

  • CVE-2024-8772MedNov 26, 2024
    risk 0.28cvss 4.3epss 0.00

    51l3nc3, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API managedoverlayimages.cgi was vulnerable to a race condition attack allowing for an attacker to block access to the overlay configuration page in the web interface of the Axis device. This flaw can…

  • CVE-2024-0067MedSep 10, 2024
    risk 0.28cvss 4.3epss 0.00

    Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API ledlimit.cgi was vulnerable for path traversal attacks allowing to list folder/file names on the local file system of the Axis device. Axis has released patched AXIS OS versions for the…

  • CVE-2024-6476MedNov 26, 2024
    risk 0.27cvss 4.2epss 0.00

    Gee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is possible for a non-admin user to gain system privileges by redirecting a file deletion upon service restart. Axis has released patched versions for the highlighted flaw. Please refer to…

  • CVE-2003-0240Jun 9, 2003
    risk 0.05cvss epss 0.30

    The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).

  • CVE-2007-2239May 7, 2007
    risk 0.04cvss epss 0.12

    Stack-based buffer overflow in the SaveBMP method in the AXIS Camera Control (aka CamImage) ActiveX control before 2.40.0.0 in AxisCamControl.ocx in AXIS 2100, 2110, 2120, 2130 PTZ, 2420, 2420-IR, 2400, 2400+, 2401, 2401+, 2411, and Panorama PTZ allows remote attackers to cause…

  • CVE-2004-2425Dec 31, 2004
    risk 0.04cvss epss 0.14

    Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to execute arbitrary commands via accent (`) and possibly other shell metacharacters in the query string to virtualinput.cgi.

  • CVE-2003-1386Dec 31, 2003
    risk 0.04cvss epss 0.08

    AXIS 2400 Video Server 2.00 through 2.33 allows remote attackers to obtain sensitive information via an HTTP request to /support/messages, which displays the server's /var/log/messages file.

  • CVE-2000-0191Feb 29, 2000
    risk 0.04cvss epss 0.11

    Axis StorPoint CD allows remote attackers to access administrator URLs without authentication via a .. (dot dot) attack.

  • CVE-2013-3543Oct 4, 2013
    risk 0.03cvss epss 0.04

    The AXIS Media Control (AMC) ActiveX control (AxisMediaControlEmb.dll) 6.2.10.11 for AXIS network cameras allows remote attackers to create or overwrite arbitrary files via a file path to the (1) StartRecord, (2) SaveCurrentImage, or (3) StartRecordMedia methods.

  • CVE-2011-5261Feb 12, 2013
    risk 0.03cvss epss 0.04

    Cross-site scripting (XSS) vulnerability in serverreport.cgi in Axis M10 Series Network Cameras M1054 firmware 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML via the pageTitle parameter to admin/showReport.shtml.

  • CVE-2007-4930Sep 18, 2007
    risk 0.03cvss epss 0.02

    Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 207W camera allow remote attackers to perform certain actions as administrators via (1) axis-cgi/admin/restart.cgi, (2) the user and sgrp parameters to axis-cgi/admin/pwdgrp.cgi in an add action, or (3) the…

  • CVE-2025-30023Jul 11, 2025
    risk 0.01cvss epss 0.01

    The communication protocol used between client and server had a flaw that could lead to an authenticated user performing a remote code execution attack.

  • CVE-2025-12063Feb 10, 2026
    risk 0.00cvss epss 0.00

    An insecure direct object reference allowed a non-admin user to modify or remove certain data objects without having the appropriate permissions.

  • CVE-2025-12757Feb 10, 2026
    risk 0.00cvss epss 0.00

    An AXIS Camera Station Pro feature can be exploited in a way that allows a non-admin user to view information they are not permitted to.

  • CVE-2025-13064Feb 10, 2026
    risk 0.00cvss epss 0.00

    A server-side injection was possible for a malicious admin to manipulate the application to include a malicious script which is executed by the server. This attack is only possible if the admin uses a client that have been tampered with.

  • CVE-2025-11547Feb 10, 2026
    risk 0.00cvss epss 0.00

    AXIS Camera Station Pro contained a flaw to perform a privilege escalation attack on the server as a non-admin user.

  • CVE-2025-6779Nov 11, 2025
    risk 0.00cvss epss 0.01

    An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an…

  • CVE-2025-5452Nov 11, 2025
    risk 0.00cvss epss 0.00

    A malicious ACAP application can gain access to admin-level service account credentials used by legitimate ACAP applications, leading to potential privilege escalation of the malicious ACAP application. This vulnerability can only be exploited if the Axis device is configured to…

  • CVE-2025-5454Nov 11, 2025
    risk 0.00cvss epss 0.00

    An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications,…

  • CVE-2025-4645Nov 11, 2025
    risk 0.00cvss epss 0.00

    An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the…

Page 1 of 2