Every CVE whose affected-product data names Axis Device Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2025-30023 — CVSS 9.0 (critical): The communication protocol used between client and server had a flaw that could lead to an authenticated user performing a remote code…
CVE-2025-30025 — CVSS 7.8 (high): The communication protocol used between the server process and the service control had a flaw that could lead to a local privilege…
CVE-2025-30024 — CVSS 6.8 (medium): The communication protocol used between client and server had a flaw that could be leveraged to execute a man in the middle attack.
CVE-2021-31989 — CVSS 5.3 (medium): A user with permission to log on to the machine hosting the AXIS Device Manager client could under certain conditions extract a memory dump…