Vulnerabilities > Axis > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-25 | CVE-2023-21406 | Out-of-bounds Write vulnerability in Axis A1001 Firmware 1.65.1 Ariel Harush and Roy Hodir from OTORIO have found a flaw in the AXIS A1001 when communicating over OSDP. | 8.8 |
| 2022-02-14 | CVE-2022-23410 | Uncontrolled Search Path Element vulnerability in Axis IP Utility 4.17.0 AXIS IP Utility before 4.18.0 allows for remote code execution and local privilege escalation by the means of DLL hijacking. | 7.8 |
| 2021-10-05 | CVE-2021-31987 | Unspecified vulnerability in Axis products A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to bypass blocked network recipients. | 7.5 |
| 2021-10-05 | CVE-2021-31988 | Injection vulnerability in Axis products A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to add the Carriage Return and Line Feed (CRLF) control characters and include arbitrary SMTP headers in the generated test email. | 8.8 |
| 2018-06-26 | CVE-2018-10664 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axis products An issue was discovered in the httpd process in multiple models of Axis IP Cameras. | 7.5 |
| 2018-06-26 | CVE-2018-10663 | Information Exposure vulnerability in Axis products An issue was discovered in multiple models of Axis IP Cameras. | 7.5 |
| 2018-06-26 | CVE-2018-10659 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axis products There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which allows remote attackers to cause a denial of service (crash) by sending a crafted command which will result in a code path that calls the UND undefined ARM instruction. | 7.5 |
| 2018-06-26 | CVE-2018-10658 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axis products There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which causes a denial of service (crash). | 7.5 |
| 2018-04-01 | CVE-2018-9158 | Improper Input Validation vulnerability in Axis M1033-W Firmware 5.40.5.1 An issue was discovered on AXIS M1033-W (IP camera) Firmware version 5.40.5.1 devices. | 7.5 |
| 2018-04-01 | CVE-2018-9157 | Unrestricted Upload of File with Dangerous Type vulnerability in Axis M1033-W Firmware 5.40.5.1 An issue was discovered on AXIS M1033-W (IP camera) Firmware version 5.40.5.1 devices. | 7.5 |