CVE-2025-0358 | Axis Communications AB AXIS OS up to 12.3.x VAPIX Device Configuration Framework privileges management

Inserito da Angelo Barbosa | Giu 2, 2025 | CVE

A vulnerability was found in Axis Communications AB AXIS OS up to 12.3.x. It has been classified as critical. This affects an unknown part of the component VAPIX Device Configuration Framework. The manipulation leads to improper privilege management.

This vulnerability is uniquely identified as CVE-2025-0358. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-0358 | Axis Communications AB AXIS OS up to 12.3.x VAPIX Device Configuration Framework privileges management

Post correlati

CVE-2023-33076 | Qualcomm 4 Gen 2 Mobile Platform memory corruption

CVE-2024-1263 | Juanpao JPShop up to 1.5.02 API PosterController.php actionUpdate pic_url unrestricted upload

CVE-2023-48314 | CollaboraOnline prior 23.5.403 Built-in CODE Server App proxy.php cross site scripting (GHSA-qjrm-q4h5-v3r2)

CVE-2025-38002 | Linux Kernel up to 6.14.7 io_uring_show_fdinfo information disclosure