CVE-2025-0359

Published Mar 4, 2025

Last updated a month ago

CVSS high 8.5

Overview

Description
During an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the ACAP Application framework that allowed applications to access restricted D-Bus methods within the framework. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.
Source
product-security@axis.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.5
Impact score
5.3
Exploitability score
2.5
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:L
Severity
HIGH

Weaknesses

product-security@axis.com
CWE-863

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2025-0359 🔴 HIGH (8.5) 🏢 Axis Communications AB - AXIS OS 🏗️ 11.11 - 12.1 🔗 https://t.co/1kniDSXp0K #CyberCron #VulnAlert #InfoSec https://t.co/tWo2Mo7h9d

    @cybercronai

    4 Mar 2025

    8 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References