Axis

Camera Station

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.7

CVE-2025-7622

  • EPSS 0.02%
  • Veröffentlicht 12.08.2025 05:15:32
  • Zuletzt bearbeitet 13.01.2026 18:46:46

During an internal security assessment, a Server-Side Request Forgery (SSRF) vulnerability that allowed an authenticated attacker to access internal resources on the server was discovered.

9

CVE-2025-30023

  • EPSS 1.92%
  • Veröffentlicht 11.07.2025 06:15:24
  • Zuletzt bearbeitet 23.01.2026 21:14:03

The communication protocol used between client and server had a flaw that could lead to an authenticated user performing a remote code execution attack.

7.8

CVE-2025-30025

  • EPSS 0.09%
  • Veröffentlicht 11.07.2025 06:15:24
  • Zuletzt bearbeitet 23.01.2026 21:49:32

The communication protocol used between the server process and the service control had a flaw that could lead to a local privilege escalation.

9.8

CVE-2025-30026

Medienbericht
  • EPSS 0.1%
  • Veröffentlicht 11.07.2025 06:15:24
  • Zuletzt bearbeitet 16.01.2026 14:56:23

The AXIS Camera Station Server had a flaw that allowed to bypass authentication that is normally required.

7.3

CVE-2025-0926

  • EPSS 0.04%
  • Veröffentlicht 23.04.2025 05:22:03
  • Zuletzt bearbeitet 14.01.2026 17:45:54

Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for a non-admin user to remove system files causing a boot loop by redirecting a file deletion when recording video. Axis has released a patched version f...

6.5

CVE-2025-1056

  • EPSS 0.07%
  • Veröffentlicht 23.04.2025 05:18:10
  • Zuletzt bearbeitet 14.01.2026 17:41:50

Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has identified an issue with a specific file that the server is using. A non-admin user can modify this file to either create files or change the content of files in an admin-protected...

6.3

CVE-2024-7696

  • EPSS 0.05%
  • Veröffentlicht 07.01.2025 06:15:17
  • Zuletzt bearbeitet 10.10.2025 14:27:04

Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for an authenticated malicious client to tamper with audit log creation in AXIS Camera Station, or perform a Denial-of-Service attack on the AXIS Camera S...

4.4

CVE-2024-6831

  • EPSS 0.05%
  • Veröffentlicht 26.11.2024 08:15:07
  • Zuletzt bearbeitet 26.11.2024 08:15:07

Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to edit and/or remove views without the necessary permission due to a client-side-only check. Axis has released patched versions for the highlighted flaw....

4.2

CVE-2024-6476

  • EPSS 0.03%
  • Veröffentlicht 26.11.2024 07:15:05
  • Zuletzt bearbeitet 26.11.2024 07:15:05

Gee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is possible for a non-admin user to gain system privileges by redirecting a file deletion upon service restart. Axis has released patched versions for the highli...

6.3

CVE-2024-6749

  • EPSS 0.04%
  • Veröffentlicht 26.11.2024 07:15:05
  • Zuletzt bearbeitet 26.11.2024 07:15:05

Seth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident report feature may expose sensitive credentials on the AXIS Camera Station windows client. If Incident report is not being used with credentials configu...