A vulnerability was found in Axis Communications AB AXIS OS up to 12.3.x. It has been classified as critical. This affects an unknown part of the component VAPIX Device Configuration Framework. The manipulation leads to improper privilege management.

This vulnerability is uniquely identified as CVE-2025-0358. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.