CVE-2025-5454

Name of the Vulnerable Software and Affected Versions Axis (affected versions not specified)

Description An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escalation. This issue can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces a victim to install a malicious ACAP application. A path traversal attack involves manipulating file paths to access restricted directories or files. Privilege escalation refers to gaining unauthorized access to higher-level system privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.