PT-2025-9626 · Axis · Axis Os

Published

2025-03-04

Updated

2025-03-05

CVE-2024-47260

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions AXIS OS (affected versions not specified)

Description The VAPIX API mediaclip.cgi endpoint did not have sufficient input validation, allowing for the uploading of more audio clips than designed, which could result in the Axis device running out of memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-641

Related Identifiers

CVE-2024-47260

Affected Products

Axis Os

PT-2025-9626 · Axis · Axis Os

CVE-2024-47260

Weakness Enumeration

Related Identifiers

Affected Products

References · 5