axis_communications_ab CVE Vulnerabilities & CVE List (5)

Products (CPE): — CVEs: 5

axis_communications_ab vulnerability overview

Aggregates CVE and security vulnerability intelligence across all axis_communications_ab-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk file inclusion and vendor risk input validation and related problems; some flaws may lead to vendor impact unexpected behavior and vendor impact file overwrite.

Vulnerability distribution trend (last 24 months)

Showing 15 of 5 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2025-9524 The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes and impact usability. This vulnerability can only be exploited after authenticating with a viewer- operator- or administrator-privileged service account. [email protected] 4.3 0.22% 2025-11-11 2026-06-17
CVE-2025-9055 The VAPIX Edge storage API that allowed a privilege escalation, enabling a VAPIX administrator-privileged user to gain Linux Root privileges. This flaw can only be exploited after authenticating with an administrator-privileged service account. [email protected] 6.4 0.10% 2025-11-11 2026-06-17
CVE-2025-8998 It was possible to upload files with a specific name to a temporary directory, which may result in process crashes and impact usability. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. [email protected] 3.1 0.20% 2025-11-11 2026-06-17
CVE-2025-10714 AXIS Optimizer was vulnerable to an unquoted search path vulnerability, which could potentially lead to privilege escalation within Microsoft Windows operating system. This vulnerability can only be exploited if the attacker has access to the local Windows machine and sufficient access rights (administrator) to write data into the installation path of AXIS Optimizer. [email protected] 8.4 0.10% 2025-11-11 2026-06-17
CVE-2025-6571 A 3rd-party component exposed its password in process arguments, allowing for low-privileged users to access it. [email protected] 6.0 0.09% 2025-11-11 2026-06-17
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence