CVE-2025-11142

>= 12.6.54 and < 12.7.36

The VAPIX API mediaclip.cgi that did not have a sufficient input validation allowing for a possible remote code execution. This fl

7.1HIGH

CVE-2025-8108

>= 12.0.0 and < 12.7.33

An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalati

6.7MEDIUM

CVE-2025-6779

>= 12.0.0 and < 12.6.40

An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalat

6.7MEDIUM

CVE-2025-6298

< 12.6.28

ACAP applications can gain elevated privileges due to improper input validation, potentially leading to privilege escalation. This

6.7MEDIUM

CVE-2025-5718

>= 12.0.0 and < 12.6.30

The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited

6.8MEDIUM

CVE-2025-5454

>= 12.0.0 and < 12.6.18

An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential priv

6.4MEDIUM

CVE-2025-5452

>= 12.0.0 and < 12.6.69

A malicious ACAP application can gain access to admin-level service account credentials used by legitimate ACAP applications, lead

6.6MEDIUM

CVE-2025-4645

>= 12.0.0 and < 12.6.7

An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vulnerability

6.7MEDIUM

CVE-2025-3892

>= 12.0.0 and < 12.5.31

ACAP applications can be executed with elevated privileges, potentially leading to privilege escalation. This vulnerability can on

6.7MEDIUM

CVE-2025-30027

>= 12.0.0 and < 12.5.36

An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vulnerability

6.7MEDIUM

CVE-2025-0358

>= 12.0.0 and < 12.4.0

During an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the VAPIX Device Configu

8.8HIGH

CVE-2025-0324

>= 12.0.0 and < 12.3.33

The VAPIX Device Configuration framework allowed a privilege escalation, enabling a lower-privileged user to gain administrator p

9.4CRITICAL

CVE-2025-0361

>= 11.11.0 and < 12.3.56

During an annual penetration test conducted on behalf of Axis Communications, Truesec discovered a flaw in the VAPIX Device Config

4.3MEDIUM

CVE-2024-47261

>= 10.12.0 and < 12.3.56

51l3nc3, a member of the AXIS OS Bug Bounty Program, has found that the VAPIX API uploadoverlayimage.cgi did not have sufficient i

4.3MEDIUM

CVE-2025-0360

>= 11.11.0 and < 12.2.41

During an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the VAPIX Device Configu

7.8HIGH

CVE-2025-0359

>= 11.11.0 and < 12.2.52

During an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the ACAP Application fra

8.5HIGH

CVE-2024-47259

>= 11.11.0 and < 12.2.52

Girishunawane, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi did not have a sufficient

3.5LOW

CVE-2024-8160

>= 10.9.0 and < 12.1.21

Erik de Jong, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API ftptest.cgi did not have a sufficient input v

3.8LOW

CVE-2024-0055

>= 10.12.0 and < 11.9.53

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs mediaclip.cgi and playclip.cgi was vulnerabl

6.5MEDIUM

CVE-2023-5800

< 11.8.61

Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay.cgi did not have a sufficient input

5.4MEDIUM

CVE-2023-5553

>= 10.8 and < 11.7.57

During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the protection for device tampering (

7.6HIGH

CVE-2023-21418

< 6.50.5.15

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API irissetup.cgi was vulnerable to path traversa

7.1HIGH

CVE-2023-21417

< 11.7.57

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API manageoverlayimage.cgi was vulnerable to pat

7.1HIGH

CVE-2023-21416

< 11.7.57

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi was vulnerable to a Denial

7.1HIGH

CVE-2023-21415

>= 6.50.5.3 and < 6.50.5.14

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API overlay_del.cgi is vulnerable to path travers

6.5MEDIUM

CVE-2023-21414

>= 10.11.55 and < 10.12.206

NCC Group has found a flaw during the annual internal penetration test ordered by Axis Communications. The protection for device t

7.1HIGH

CVE-2023-21413

>= 11.0.89 and < 11.6.94

GoSecure on behalf of Genetec Inc. has found a flaw that allows for a remote code execution during the installation of ACAP applic

9.1CRITICAL

CVE-2023-21405

<= 10.12.178

Knud from Fraktal.fi has found a flaw in some Axis Network Door Controllers and Axis Network Intercoms when communicating over OSD

6.5MEDIUM

CVE-2023-21404

>= 11.0.89 and < 11.4.52

AXIS OS 11.0.X - 11.3.x use a static RSA key in legacy LUA-components to protect Axis-specific source code. The static RSA key is

5.3MEDIUM

CVE-2021-31988

< 10.7

A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to add the Carriage R

8.8HIGH

CVE-2021-31987

< 10.8

A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to bypass blocked net

7.5HIGH

CVE-2021-31986

< 10.7

User controlled parameters related to SMTP notifications are not correctly validated. This can lead to a buffer overflow resulting

6.8MEDIUM