axis

Top products

The 15 most recently published vulnerabilities affecting axis.

• CVE-2026-1185A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. This vulnerability can only be exploited i...5.4May 12, 2026
• CVE-2026-0804An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escalation. This vulnerability can only be exploited if the A...6.7May 12, 2026
• CVE-2026-0802An ACAP configuration file lacked sufficient input validation, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis...6.0May 12, 2026
• CVE-2026-0541ACAP applications can gain elevated privileges due to improper input validation during the installation process, potentially leading to privilege escalation. This vulnerability can only be exploite...6.7May 12, 2026
• CVE-2025-12063An insecure direct object reference allowed a non-admin user to modify or remove certain data objects without having the appropriate permissions.5.7Feb 10, 2026
• CVE-2025-12757An AXIS Camera Station Pro feature can be exploited in a way that allows a non-admin user to view information they are not permitted to.4.6Feb 10, 2026
• CVE-2025-13064A server-side injection was possible for a malicious admin to manipulate the application to include a malicious script which is executed by the server. This attack is only possible if the admin use...4.5Feb 10, 2026
• CVE-2025-11547AXIS Camera Station Pro contained a flaw to perform a privilege escalation attack on the server as a non-admin user.7.8Feb 10, 2026
• CVE-2025-11142The VAPIX API mediaclip.cgi that did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or ...7.1Feb 10, 2026
• CVE-2025-8108An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is ...6.7Nov 11, 2025
• CVE-2025-6779An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is...6.7Nov 11, 2025
• CVE-2025-5452A malicious ACAP application can gain access to admin-level service account credentials used by legitimate ACAP applications, leading to potential privilege escalation of the malicious ACAP applica...6.6Nov 11, 2025
• CVE-2025-6298ACAP applications can gain elevated privileges due to improper input validation, potentially leading to privilege escalation. This vulnerability can only be exploited if the Axis device is configur...6.7Nov 11, 2025
• CVE-2025-5718The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsi...6.8Nov 11, 2025
• CVE-2025-5454An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escalation. This vulnerability can only be exploited if the A...6.4Nov 11, 2025