CVE-2023-5800 | AXIS OS 6.50/8.40/9.80/10.12/11.8 VAPIX API create_overlay.cgi Remote Code Execution

Posted by Angelo Barbosa | Feb 5, 2024 | CVE

A vulnerability has been found in AXIS OS 6.50/8.40/9.80/10.12/11.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file create_overlay.cgi of the component VAPIX API. The manipulation leads to Remote Code Execution.

This vulnerability is known as CVE-2023-5800. The attack can be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2023-5800 | AXIS OS 6.50/8.40/9.80/10.12/11.8 VAPIX API create_overlay.cgi Remote Code Execution

Related Posts

CVE-2024-0993 | Tenda i6 1.0.0.9(3857) httpd /goform/WifiMacFilterGet formWifiMacFilterGet index stack-based overflow

CVE-2024-42939 | YZNCMS 1.4.2 /index/index.html configured remarks cross site scripting

CVE-2024-0068 | HYPR Workforce Access up to 8.7.0 on macOS link following

CVE-2023-51678 | Doofinder for WooCommerce Plugin up to 2.0.33 on WordPress AJAX Action authorization