Every CVE whose affected-product data names Axis Axis Os 2020, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2021-31988 — CVSS 8.8 (high): A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to add the Carriage Return and…
CVE-2021-31987 — CVSS 7.5 (high): A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to bypass blocked network…
CVE-2023-21418 — CVSS 7.1 (high): Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API irissetup.cgi was vulnerable to path traversal attacks…
CVE-2023-21417 — CVSS 7.1 (high): Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API manageoverlayimage.cgi was vulnerable to path…
CVE-2021-31986 — CVSS 6.8 (medium): User controlled parameters related to SMTP notifications are not correctly validated. This can lead to a buffer overflow resulting in…
CVE-2023-21415 — CVSS 6.5 (medium): Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API overlay_del.cgi is vulnerable to path traversal…
CVE-2023-5800 — CVSS 5.4 (medium): Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay.cgi did not have a sufficient input…