Name of the Vulnerable Software and Affected Versions:

Axis Video Management Software (affected versions not specified)

Description:

The communication protocol used between the client and server has a flaw that could allow an authenticated user to perform a remote code execution attack. The issue involves improper serialized data handling between the client and server, enabling attackers to execute code without user interaction, which is suitable for lateral movement within a network.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.