CVE-2004-2426
published 2004-12-31CVE-2004-2426: Directory traversal vulnerability in Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to bypass authentication…
medium5CVSS 3.1
AVNACLAuNCNIPAN
Directory traversal vulnerability in Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to bypass authentication via a .. (dot dot) in an HTTP POST request to ServerManager.srv, then use these privileges to conduct other activities, such as modifying files using editcgi.cgi.
Affected
70 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| axis | 2100_network_camera | — | — |
| axis | 2100_network_camera | — | — |
| axis | 2100_network_camera | — | — |
| axis | 2100_network_camera | — | — |
| axis | 2100_network_camera | — | — |
| axis | 2100_network_camera | — | — |
| axis | 2100_network_camera | — | — |
| axis | 2100_network_camera | — | — |
| axis | 2110_network_camera | — | — |
| axis | 2110_network_camera | — | — |
| axis | 2110_network_camera | — | — |
| axis | 2110_network_camera | — | — |
| axis | 2110_network_camera | — | — |
| axis | 2110_network_camera | — | — |
| axis | 2110_network_camera | — | — |
| axis | 2120_network_camera | — | — |
| axis | 2120_network_camera | — | — |
| axis | 2120_network_camera | — | — |
| axis | 2120_network_camera | — | — |
| axis | 2120_network_camera | — | — |
| axis | 2120_network_camera | — | — |
| axis | 2120_network_camera | — | — |
| axis | 2130_ptz_network_camera | — | — |
| axis | 2130_ptz_network_camera | — | — |
| axis | 2130_ptz_network_camera | — | — |