CVE-2023-22984

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Axis 207W network camera (affected versions not specified)

Description A reflected XSS issue in the web administration portal of the Axis 207W network camera allows an attacker to execute arbitrary JavaScript via URL. This enables the attacker to potentially steal user sessions, hijack user accounts, or perform other malicious actions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2023-22984

Affected Products

Axis 207W

CVE-2023-22984

Weakness Enumeration

Related Identifiers

Affected Products

References · 7