PT-2023-18184 · Axis · Axis Os
Published
2023-10-16
·
Updated
2024-11-08
·
CVE-2023-21413
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
AXIS OS versions (affected versions not specified)
Description
A flaw has been found that allows for remote code execution during the installation of ACAP applications on the Axis device. The application handling service in AXIS OS was vulnerable to command injection, allowing an attacker to run arbitrary code.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
OS Command Injection
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Axis Os