Axis Axis_os_2022

9 CVEs affecting Axis Axis_os_2022. Latest disclosed: 2025-04-08. Critical: 0, High: 4.

Top CVEs affecting Axis Axis_os_2022
CVESeverityScorePublishedSummary
CVE-2023-5553High7.62023-11-21During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the protection for device tampering (commonly known as Secure Boot…
CVE-2023-21418High7.12023-11-21Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API irissetup.cgi was vulnerable to path traversal attacks that allows for fil…
CVE-2023-21417High7.12023-11-21Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API manageoverlayimage.cgi was vulnerable to path traversal attacks that allo…
CVE-2023-21416High7.12023-11-21Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi was vulnerable to a Denial-of-Service attack allowing f…
CVE-2024-0055Medium6.52024-03-19Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs mediaclip.cgi and playclip.cgi was vulnerable for file globbing which cou…
CVE-2023-21415Medium6.52023-10-16Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API overlay_del.cgi is vulnerable to path traversal attacks that allows for fi…
CVE-2023-5800Medium5.42024-02-05Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay.cgi did not have a sufficient input validation allowing for a po…
CVE-2024-47261Medium4.32025-04-0851l3nc3, a member of the AXIS OS Bug Bounty Program, has found that the VAPIX API uploadoverlayimage.cgi did not have sufficient input validation to allow an a…
CVE-2024-8160Low3.82024-11-26Erik de Jong, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API ftptest.cgi did not have a sufficient input validation allowing for a poss…