Every CVE whose affected-product data names Axis Axis Os 2022, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2023-5553 — CVSS 7.6 (high): During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the protection for device tampering (commonly…
CVE-2023-21416 — CVSS 7.1 (high): Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi was vulnerable to a…
CVE-2023-21417 — CVSS 7.1 (high): Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API manageoverlayimage.cgi was vulnerable to path…
CVE-2023-21418 — CVSS 7.1 (high): Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API irissetup.cgi was vulnerable to path traversal attacks…
CVE-2023-21415 — CVSS 6.5 (medium): Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API overlay_del.cgi is vulnerable to path traversal…
CVE-2024-0055 — CVSS 6.5 (medium): Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX APIs mediaclip.cgi and playclip.cgi was vulnerable for…
CVE-2023-5800 — CVSS 5.4 (medium): Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay.cgi did not have a sufficient input…
CVE-2024-47261 — CVSS 4.3 (medium): 51l3nc3, a member of the AXIS OS Bug Bounty Program, has found that the VAPIX API uploadoverlayimage.cgi did not have sufficient input…
CVE-2024-8160 — CVSS 3.8 (low): Erik de Jong, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API ftptest.cgi did not have a sufficient input validation…