ГлавнаяУязвимости → CVE-2025-0360
7.8высокая

CVE-2025-0360

Описание

During an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the VAPIX Device Configuration framework that could lead to an incorrect user privilege level in the VAPIX service account D-Bus API.

Затрагиваемое ПО
Axis Axis osAxis Axis os 2024
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.axis.com/dam/public/b1/fe/46/cve-2025-0360pdf-en-US-466887.pdf