CVE-2018-9158

Name of the Vulnerable Software and Affected Versions AXIS M1033-W (IP camera) Firmware version 5.40.5.1

Description The issue concerns a lack of a suitable mechanism to prevent a Denial of Service (DoS) attack, resulting in a response time delay. An attacker can exploit this by using the hping3 tool to perform an IPv4 flood attack, which interrupts services for the duration of the attack.

Recommendations For AXIS M1033-W (IP camera) Firmware version 5.40.5.1, consider implementing network traffic filtering to restrict incoming IPv4 flood attacks as a temporary mitigation measure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.