CVE-2025-9524 | Axis AXIS OS prior 12.7.11 VAPIX API port.cgi improper validation of specified type of input

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Axis AXIS OS up to 8.40.88/9.80.122/10.12.304/11.11.176/12.7.10. This vulnerability affects unknown code of the file port.cgi of the component VAPIX API. The manipulation leads to improper validation of specified type of input.

This vulnerability is traded as CVE-2025-9524. It is possible to initiate the attack remotely. There is no exploit available.

It is advisable to upgrade the affected component.

CVE-2025-9524 | Axis AXIS OS prior 12.7.11 VAPIX API port.cgi improper validation of specified type of input

Post correlati

CVE-2024-5444 | Bible Text Plugin up to 0.2 on WordPress cross site scripting

CVE-2024-0990 | Tenda i6 1.0.0.9(3857) httpd /goform/setAutoPing formSetAutoPing ping1 stack-based overflow

CVE-2024-23512 | ProductX Plugin up to 3.1.4 on WordPress wopb_wishlist/wopb_compare code injection

CVE-2025-56401 | ZIRA WBRM 7.0 referenceLookupsByTableNameAndColumnName sql injection