Axis Communications Ab Axis Camera Station vulnerabilities

7 known vulnerabilities affecting axis_communications_ab/axis_camera_station.

Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM6

Vulnerabilities

Page 1 of 1
CVE-2025-7622MEDIUMCVSS 5.1≥ 5.32, < 5.592025-08-12
CVE-2025-7622 [MEDIUM] CWE-918 CVE-2025-7622: During an internal security assessment, a Server-Side Request Forgery (SSRF) vulnerability that allo During an internal security assessment, a Server-Side Request Forgery (SSRF) vulnerability that allowed an authenticated attacker to access internal resources on the server was discovered.
cvelistv5nvd
CVE-2025-30023CRITICALCVSS 9.0v<5.582025-07-11
CVE-2025-30023 [CRITICAL] CWE-502 CVE-2025-30023: The communication protocol used between client and server had a flaw that could lead to an authentic The communication protocol used between client and server had a flaw that could lead to an authenticated user performing a remote code execution attack.
cvelistv5nvd
CVE-2025-30025MEDIUMCVSS 4.8v<62025-07-11
CVE-2025-30025 [MEDIUM] CWE-502 CVE-2025-30025: The communication protocol used between the server process and the service control had a flaw that c The communication protocol used between the server process and the service control had a flaw that could lead to a local privilege escalation.
cvelistv5nvd
CVE-2025-30026MEDIUMCVSS 5.3v<5.582025-07-11
CVE-2025-30026 [MEDIUM] CWE-288 CVE-2025-30026: The AXIS Camera Station Server had a flaw that allowed to bypass authentication that is normally req The AXIS Camera Station Server had a flaw that allowed to bypass authentication that is normally required.
cvelistv5nvd
CVE-2024-6476MEDIUMCVSS 4.2v<5.57.335562024-11-26
CVE-2024-6476 [MEDIUM] CWE-276 CVE-2024-6476: Gee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is possible f Gee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is possible for a non-admin user to gain system privileges by redirecting a file deletion upon service restart. Axis has released patched versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.
cvelistv5nvd
CVE-2024-6749MEDIUMCVSS 6.3v5.25 - 5.57.276102024-11-26
CVE-2024-6749 [MEDIUM] CWE-522 CVE-2024-6749: Seth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident re Seth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident report feature may expose sensitive credentials on the AXIS Camera Station windows client. If Incident report is not being used with credentials configured this flaw does not apply. Axis has released patched versions for the highlighted flaw. Please refe
cvelistv5nvd
CVE-2024-6831MEDIUMCVSS 4.4v<5.57.335562024-11-26
CVE-2024-6831 [MEDIUM] CWE-602 CVE-2024-6831: Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to ed Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to edit and/or remove views without the necessary permission due to a client-side-only check. Axis has released patched versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.
cvelistv5nvd