cbcvebase.
CVE-2003-0240
published 2003-06-09

CVE-2003-0240: The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration…

critical10CVSS 3.1
AVNACLAuNCCICAC
EXPLOIT
The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).

Affected

9 ranges
VendorProductVersion rangeFixed in
axis2100_network_camera<= 2.32
axis2110_network_camera<= 2.32
axis2120_network_camera<= 2.32
axis2130_ptz_network_camera<= 2.32
axis2400_video_server<= 2.32
axis2401_video_server<= 2.32
axis2420_network_camera<= 2.32
axis2460_network_dvr<= 3.00
axis250s_video_server<= 3.02