- Description
- During an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the VAPIX Device Configuration framework that could lead to an incorrect user privilege level in the VAPIX service account D-Bus API.
- Source
- product-security@axis.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- product-security@axis.com
- CWE-863
- Hype score
- Not currently trending
CVE-2025-0360 During an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the VAPIX Device Configuration framework that could lead to an… https://t.co/2wv1yvNp77
@CVEnew
5 Mar 2025
100 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-0360 🔴 HIGH (7.8) 🏢 Axis Communications AB - AXIS OS 🏗️ 11.11 - 12.1 🔗 https://t.co/CY6E68dDxO #CyberCron #VulnAlert #InfoSec https://t.co/5rVxyqBQxu
@cybercronai
4 Mar 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes