cvelistv5 - CVE-2023-5677

CVE-2023-5677 (GCVE-0-2023-5677)

Vulnerability from cvelistv5 – Published: 2024-02-05 05:20 – Updated: 2025-06-17 21:29

Summary

Brandon Rothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Please refer to the Axis security advisory for more information and solution.

Severity ?

6.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Assigner

Axis

References

URL

Tags

https://www.axis.com/dam/public/0a/47/d1/cve-2023…

Impacted products

	Vendor	Product	Version
	Axis Communications AB	AXIS OS	Affected: AXIS OS 5.51 Affected: AXIS OS 6.50

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T08:07:32.550Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-5677",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-05T15:05:44.458179Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-17T21:29:24.839Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "AXIS OS",
          "vendor": "Axis Communications AB",
          "versions": [
            {
              "status": "affected",
              "version": "AXIS OS 5.51"
            },
            {
              "status": "affected",
              "version": "AXIS OS 6.50"
            }
          ]
        }
      ],
      "datePublic": "2024-02-05T05:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eBrandon\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API \u003ci\u003etcptest.cgi\u003c/i\u003e\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Please refer to the Axis security advisory\nfor more information and solution. \u003c/p\u003e"
            }
          ],
          "value": "Brandon\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Please refer to the Axis security advisory\nfor more information and solution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-15T11:01:31.331Z",
        "orgId": "f2daf9a0-02c2-4b83-a01d-63b3b304b807",
        "shortName": "Axis"
      },
      "references": [
        {
          "url": "https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f2daf9a0-02c2-4b83-a01d-63b3b304b807",
    "assignerShortName": "Axis",
    "cveId": "CVE-2023-5677",
    "datePublished": "2024-02-05T05:20:24.483Z",
    "dateReserved": "2023-10-20T07:48:06.861Z",
    "dateUpdated": "2025-06-17T21:29:24.839Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:m3024-lve_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"5CD58564-8A6D-4A4A-94BC-1163A7512951\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:m3024-lve:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"51A676F7-81A2-470F-B5AE-0684596CD13F\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:m3025-ve_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"19DB8F9A-73CB-48EE-B493-0C89BE2338FE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:m3025-ve:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB751571-D477-4D70-90DE-7B956A752072\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:m7014_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"096D5F50-DFCB-436F-B17F-59DAB4CCDB11\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:m7014:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"37A5B7B4-9C9B-48A7-8EF6-B511BEA39456\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:m7016_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"55063889-8669-4EEA-AAFD-AC8C37F61A99\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:m7016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36508E54-ED34-4706-AF59-49ACBB21B60A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:p1214-e_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"D7535314-78B5-403A-BC93-FBBDB769821C\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:p1214-e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0562D86-35D8-42A2-9784-BEF72209C2A0\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:p7214_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"722C5352-15D9-48DD-B64A-B8EC10DA15EC\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:p7214:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6F038A16-4542-4249-A06E-80E5456C70BC\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:p7216_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"BC60D72C-6B09-4629-A28B-D0F4248F81C0\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:p7216:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"056BA315-23A3-431A-9F7B-A1758808DB6E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:q7401_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"4B802948-6660-49AC-BBA9-7441A525D60C\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:q7401:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"15FBB812-E5B2-4152-AA6C-64138094FF90\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:q7404_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"087E2F65-B69A-42DA-A354-EAE4D83EDB6D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:q7404:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F6021F9F-3109-4D52-9C41-478AC758DBFC\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:q7414_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.7.7\", \"matchCriteriaId\": \"AF8E6DBA-575D-4DC7-847D-4E626617A199\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:q7414:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C5592008-9957-49AD-975A-C1F6F77817AA\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:axis:q7424-r_mk_ii_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.51.3.9\", \"matchCriteriaId\": \"75C0A14B-E3E8-4942-B87C-D71158B87905\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:axis:q7424-r_mk_ii:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6093F4BD-5C7E-4EE9-BA75-76FDA3D245FB\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Brandon\\nRothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi\\ndid not have a sufficient input validation allowing for a possible remote code\\nexecution. This flaw can only be exploited after authenticating with an\\noperator- or administrator-privileged service account. The impact of exploiting\\nthis vulnerability is lower with operator-privileges compared to\\nadministrator-privileges service accounts. Axis has released patched AXIS OS\\nversions for the highlighted flaw. Please refer to the Axis security advisory\\nfor more information and solution.\"}, {\"lang\": \"es\", \"value\": \"Brandon Rothel de QED Secure Solutions descubri\\u00f3 que la API VAPIX tcptest.cgi no ten\\u00eda una validaci\\u00f3n de entrada suficiente que permitiera una posible ejecuci\\u00f3n remota de c\\u00f3digo. Esta falla solo puede explotarse despu\\u00e9s de autenticarse con una cuenta de servicio con privilegios de operador o administrador. El impacto de explotar esta vulnerabilidad es menor con privilegios de operador en comparaci\\u00f3n con cuentas de servicio con privilegios de administrador. Axis ha lanzado versiones parcheadas del sistema operativo AXIS para la falla resaltada. Consulte el aviso de seguridad de Axis para obtener m\\u00e1s informaci\\u00f3n y soluciones.\"}]",
      "id": "CVE-2023-5677",
      "lastModified": "2024-11-21T08:42:15.273",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"product-security@axis.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"baseScore\": 6.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}]}",
      "published": "2024-02-05T06:15:46.690",
      "references": "[{\"url\": \"https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf\", \"source\": \"product-security@axis.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "product-security@axis.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"product-security@axis.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-78\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-5677\",\"sourceIdentifier\":\"product-security@axis.com\",\"published\":\"2024-02-05T06:15:46.690\",\"lastModified\":\"2025-05-15T10:15:23.943\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Brandon\\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi\\ndid not have a sufficient input validation allowing for a possible remote code\\nexecution. This flaw can only be exploited after authenticating with an\\noperator- or administrator-privileged service account. The impact of exploiting\\nthis vulnerability is lower with operator-privileges compared to\\nadministrator-privileges service accounts. Please refer to the Axis security advisory\\nfor more information and solution.\"},{\"lang\":\"es\",\"value\":\"Brandon Rothel de QED Secure Solutions descubri\u00f3 que la API VAPIX tcptest.cgi no ten\u00eda una validaci\u00f3n de entrada suficiente que permitiera una posible ejecuci\u00f3n remota de c\u00f3digo. Esta falla solo puede explotarse despu\u00e9s de autenticarse con una cuenta de servicio con privilegios de operador o administrador. El impacto de explotar esta vulnerabilidad es menor con privilegios de operador en comparaci\u00f3n con cuentas de servicio con privilegios de administrador. Axis ha lanzado versiones parcheadas del sistema operativo AXIS para la falla resaltada. Consulte el aviso de seguridad de Axis para obtener m\u00e1s informaci\u00f3n y soluciones.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"product-security@axis.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\",\"baseScore\":6.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":3.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"product-security@axis.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-78\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:m3024-lve_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"5CD58564-8A6D-4A4A-94BC-1163A7512951\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:m3024-lve:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51A676F7-81A2-470F-B5AE-0684596CD13F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:m3025-ve_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"19DB8F9A-73CB-48EE-B493-0C89BE2338FE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:m3025-ve:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB751571-D477-4D70-90DE-7B956A752072\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:m7014_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"096D5F50-DFCB-436F-B17F-59DAB4CCDB11\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:m7014:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37A5B7B4-9C9B-48A7-8EF6-B511BEA39456\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:m7016_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"55063889-8669-4EEA-AAFD-AC8C37F61A99\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:m7016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36508E54-ED34-4706-AF59-49ACBB21B60A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:p1214-e_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"D7535314-78B5-403A-BC93-FBBDB769821C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:p1214-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0562D86-35D8-42A2-9784-BEF72209C2A0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:p7214_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"722C5352-15D9-48DD-B64A-B8EC10DA15EC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:p7214:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F038A16-4542-4249-A06E-80E5456C70BC\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:p7216_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"BC60D72C-6B09-4629-A28B-D0F4248F81C0\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:p7216:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"056BA315-23A3-431A-9F7B-A1758808DB6E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:q7401_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"4B802948-6660-49AC-BBA9-7441A525D60C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:q7401:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15FBB812-E5B2-4152-AA6C-64138094FF90\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:q7404_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"087E2F65-B69A-42DA-A354-EAE4D83EDB6D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:q7404:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6021F9F-3109-4D52-9C41-478AC758DBFC\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:q7414_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.7.7\",\"matchCriteriaId\":\"AF8E6DBA-575D-4DC7-847D-4E626617A199\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:q7414:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5592008-9957-49AD-975A-C1F6F77817AA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:axis:q7424-r_mk_ii_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.51.3.9\",\"matchCriteriaId\":\"75C0A14B-E3E8-4942-B87C-D71158B87905\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:axis:q7424-r_mk_ii:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6093F4BD-5C7E-4EE9-BA75-76FDA3D245FB\"}]}]}],\"references\":[{\"url\":\"https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf\",\"source\":\"product-security@axis.com\"},{\"url\":\"https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T08:07:32.550Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-5677\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-02-05T15:05:44.458179Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-06-17T21:24:32.937Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Axis Communications AB\", \"product\": \"AXIS OS\", \"versions\": [{\"status\": \"affected\", \"version\": \"AXIS OS 5.51\"}, {\"status\": \"affected\", \"version\": \"AXIS OS 6.50\"}], \"defaultStatus\": \"unaffected\"}], \"datePublic\": \"2024-02-05T05:00:00.000Z\", \"references\": [{\"url\": \"https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Brandon\\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi\\ndid not have a sufficient input validation allowing for a possible remote code\\nexecution. This flaw can only be exploited after authenticating with an\\noperator- or administrator-privileged service account. The impact of exploiting\\nthis vulnerability is lower with operator-privileges compared to\\nadministrator-privileges service accounts. Please refer to the Axis security advisory\\nfor more information and solution.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eBrandon\\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API \u003ci\u003etcptest.cgi\u003c/i\u003e\\ndid not have a sufficient input validation allowing for a possible remote code\\nexecution. This flaw can only be exploited after authenticating with an\\noperator- or administrator-privileged service account. The impact of exploiting\\nthis vulnerability is lower with operator-privileges compared to\\nadministrator-privileges service accounts. Please refer to the Axis security advisory\\nfor more information and solution. \u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-78\", \"description\": \"CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"f2daf9a0-02c2-4b83-a01d-63b3b304b807\", \"shortName\": \"Axis\", \"dateUpdated\": \"2025-05-15T11:01:31.331Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-5677\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-06-17T21:29:24.839Z\", \"dateReserved\": \"2023-10-20T07:48:06.861Z\", \"assignerOrgId\": \"f2daf9a0-02c2-4b83-a01d-63b3b304b807\", \"datePublished\": \"2024-02-05T05:20:24.483Z\", \"assignerShortName\": \"Axis\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2024-AVI-0095

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Axis. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Axis	N/A	AXIS M7016 versions antérieures à 5.51.7.7
Axis	N/A	AXIS P1214(-E) versions antérieures à 5.51.7.7
Axis	N/A	AXIS P7214 versions antérieures à 5.51.7.7
Axis	N/A	AXIS Q7414 versions antérieures à 5.51.7.7
Axis	N/A	AXIS M3024-L versions antérieures à 5.51.7.7
Axis	N/A	AXIS P7216 versions antérieures à 5.51.7.7
Axis	N/A	AXIS Q7424-R Mk II versions antérieures à 5.51.3.9
Axis	N/A	AXIS Q7404 versions antérieures à 5.51.7.7
Axis	N/A	Axis OS versions antérieures à 8.40.40
Axis	N/A	AXIS M3025-VE versions antérieures à 5.51.7.7
Axis	N/A	Axis OS LTS 2022 versions antérieures à 10.12.220
Axis	N/A	AXIS M7014 versions antérieures à 5.51.7.7
Axis	N/A	Axis OS versions antérieures à 6.50.5.16
Axis	N/A	Axis OS LTS 2020 versions antérieures à 9.80.55
Axis	N/A	AXIS Q7401 versions antérieures à 5.51.7.7
Axis	N/A	Axis OS Active Track versions antérieures à 11.8.61

References

Title

Publication Time

Tags

Bulletin de sécurité Axis CVE-2023-5677 du 05 février 2024	None	vendor-advisory
Bulletin de sécurité Axis CVE-2023-5800 du 05 février 2024	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "AXIS M7016 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS P1214(-E) versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS P7214 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS Q7414 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS M3024-L versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS P7216 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS Q7424-R Mk II versions ant\u00e9rieures \u00e0 5.51.3.9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS Q7404 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS versions ant\u00e9rieures \u00e0 8.40.40",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS M3025-VE versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS LTS 2022 versions ant\u00e9rieures \u00e0 10.12.220",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS M7014 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS versions ant\u00e9rieures \u00e0 6.50.5.16",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS LTS 2020 versions ant\u00e9rieures \u00e0 9.80.55",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS Q7401 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS Active Track versions ant\u00e9rieures \u00e0 11.8.61",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-5677",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-5677"
    },
    {
      "name": "CVE-2023-5800",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-5800"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0095",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-02-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eles produits Axis\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Axis",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Axis CVE-2023-5677 du 05 f\u00e9vrier 2024",
      "url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Axis CVE-2023-5800 du 05 f\u00e9vrier 2024",
      "url": "https://www.axis.com/dam/public/89/d9/99/cve-2023-5800-en-US-424339.pdf"
    }
  ]
}

CERTFR-2024-AVI-0095

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Axis. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Axis	N/A	AXIS M7016 versions antérieures à 5.51.7.7
Axis	N/A	AXIS P1214(-E) versions antérieures à 5.51.7.7
Axis	N/A	AXIS P7214 versions antérieures à 5.51.7.7
Axis	N/A	AXIS Q7414 versions antérieures à 5.51.7.7
Axis	N/A	AXIS M3024-L versions antérieures à 5.51.7.7
Axis	N/A	AXIS P7216 versions antérieures à 5.51.7.7
Axis	N/A	AXIS Q7424-R Mk II versions antérieures à 5.51.3.9
Axis	N/A	AXIS Q7404 versions antérieures à 5.51.7.7
Axis	N/A	Axis OS versions antérieures à 8.40.40
Axis	N/A	AXIS M3025-VE versions antérieures à 5.51.7.7
Axis	N/A	Axis OS LTS 2022 versions antérieures à 10.12.220
Axis	N/A	AXIS M7014 versions antérieures à 5.51.7.7
Axis	N/A	Axis OS versions antérieures à 6.50.5.16
Axis	N/A	Axis OS LTS 2020 versions antérieures à 9.80.55
Axis	N/A	AXIS Q7401 versions antérieures à 5.51.7.7
Axis	N/A	Axis OS Active Track versions antérieures à 11.8.61

References

Title

Publication Time

Tags

Bulletin de sécurité Axis CVE-2023-5677 du 05 février 2024	None	vendor-advisory
Bulletin de sécurité Axis CVE-2023-5800 du 05 février 2024	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "AXIS M7016 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS P1214(-E) versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS P7214 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS Q7414 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS M3024-L versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS P7216 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS Q7424-R Mk II versions ant\u00e9rieures \u00e0 5.51.3.9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS Q7404 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS versions ant\u00e9rieures \u00e0 8.40.40",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS M3025-VE versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS LTS 2022 versions ant\u00e9rieures \u00e0 10.12.220",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS M7014 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS versions ant\u00e9rieures \u00e0 6.50.5.16",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS LTS 2020 versions ant\u00e9rieures \u00e0 9.80.55",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "AXIS Q7401 versions ant\u00e9rieures \u00e0 5.51.7.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    },
    {
      "description": "Axis OS Active Track versions ant\u00e9rieures \u00e0 11.8.61",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Axis",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-5677",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-5677"
    },
    {
      "name": "CVE-2023-5800",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-5800"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0095",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-02-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eles produits Axis\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Axis",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Axis CVE-2023-5677 du 05 f\u00e9vrier 2024",
      "url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Axis CVE-2023-5800 du 05 f\u00e9vrier 2024",
      "url": "https://www.axis.com/dam/public/89/d9/99/cve-2023-5800-en-US-424339.pdf"
    }
  ]
}

FKIE_CVE-2023-5677

Vulnerability from fkie_nvd - Published: 2024-02-05 06:15 - Updated: 2025-05-15 10:15

Severity ?

6.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	product-security@axis.com	https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf
	af854a3a-2127-422b-91ae-364da2661108	https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf	Vendor Advisory

Impacted products

Vendor	Product	Version
axis	m3024-lve_firmware	*
axis	m3024-lve	-
axis	m3025-ve_firmware	*
axis	m3025-ve	-
axis	m7014_firmware	*
axis	m7014	-
axis	m7016_firmware	*
axis	m7016	-
axis	p1214-e_firmware	*
axis	p1214-e	-
axis	p7214_firmware	*
axis	p7214	-
axis	p7216_firmware	*
axis	p7216	-
axis	q7401_firmware	*
axis	q7401	-
axis	q7404_firmware	*
axis	q7404	-
axis	q7414_firmware	*
axis	q7414	-
axis	q7424-r_mk_ii_firmware	*
axis	q7424-r_mk_ii	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:m3024-lve_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5CD58564-8A6D-4A4A-94BC-1163A7512951",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:m3024-lve:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "51A676F7-81A2-470F-B5AE-0684596CD13F",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:m3025-ve_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "19DB8F9A-73CB-48EE-B493-0C89BE2338FE",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:m3025-ve:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB751571-D477-4D70-90DE-7B956A752072",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:m7014_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "096D5F50-DFCB-436F-B17F-59DAB4CCDB11",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:m7014:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "37A5B7B4-9C9B-48A7-8EF6-B511BEA39456",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:m7016_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "55063889-8669-4EEA-AAFD-AC8C37F61A99",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:m7016:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "36508E54-ED34-4706-AF59-49ACBB21B60A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:p1214-e_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7535314-78B5-403A-BC93-FBBDB769821C",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:p1214-e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0562D86-35D8-42A2-9784-BEF72209C2A0",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:p7214_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "722C5352-15D9-48DD-B64A-B8EC10DA15EC",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:p7214:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6F038A16-4542-4249-A06E-80E5456C70BC",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:p7216_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BC60D72C-6B09-4629-A28B-D0F4248F81C0",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:p7216:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "056BA315-23A3-431A-9F7B-A1758808DB6E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:q7401_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4B802948-6660-49AC-BBA9-7441A525D60C",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:q7401:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15FBB812-E5B2-4152-AA6C-64138094FF90",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:q7404_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "087E2F65-B69A-42DA-A354-EAE4D83EDB6D",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:q7404:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6021F9F-3109-4D52-9C41-478AC758DBFC",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:q7414_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF8E6DBA-575D-4DC7-847D-4E626617A199",
              "versionEndExcluding": "5.51.7.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:q7414:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5592008-9957-49AD-975A-C1F6F77817AA",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:axis:q7424-r_mk_ii_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "75C0A14B-E3E8-4942-B87C-D71158B87905",
              "versionEndExcluding": "5.51.3.9",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:axis:q7424-r_mk_ii:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6093F4BD-5C7E-4EE9-BA75-76FDA3D245FB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Brandon\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Please refer to the Axis security advisory\nfor more information and solution."
    },
    {
      "lang": "es",
      "value": "Brandon Rothel de QED Secure Solutions descubri\u00f3 que la API VAPIX tcptest.cgi no ten\u00eda una validaci\u00f3n de entrada suficiente que permitiera una posible ejecuci\u00f3n remota de c\u00f3digo. Esta falla solo puede explotarse despu\u00e9s de autenticarse con una cuenta de servicio con privilegios de operador o administrador. El impacto de explotar esta vulnerabilidad es menor con privilegios de operador en comparaci\u00f3n con cuentas de servicio con privilegios de administrador. Axis ha lanzado versiones parcheadas del sistema operativo AXIS para la falla resaltada. Consulte el aviso de seguridad de Axis para obtener m\u00e1s informaci\u00f3n y soluciones."
    }
  ],
  "id": "CVE-2023-5677",
  "lastModified": "2025-05-15T10:15:23.943",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 6.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.4,
        "source": "product-security@axis.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-02-05T06:15:46.690",
  "references": [
    {
      "source": "product-security@axis.com",
      "url": "https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf"
    }
  ],
  "sourceIdentifier": "product-security@axis.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-78"
        }
      ],
      "source": "product-security@axis.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2023-5677

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Brandon Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.

Aliases

CVE-2023-5677

Aliases

CVE-2023-5677

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-5677",
    "id": "GSD-2023-5677"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-5677"
      ],
      "details": "Brandon\nRothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Axis has released patched AXIS OS\nversions for the highlighted flaw. Please refer to the Axis security advisory\nfor more information and solution. \n\n\n\n\n\n\n\n",
      "id": "GSD-2023-5677",
      "modified": "2023-12-13T01:20:50.813750Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "product-security@axis.com",
        "ID": "CVE-2023-5677",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "AXIS OS",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "AXIS OS 5.51"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Axis Communications AB"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Brandon\nRothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Axis has released patched AXIS OS\nversions for the highlighted flaw. Please refer to the Axis security advisory\nfor more information and solution. \n\n\n\n\n\n\n\n"
          }
        ]
      },
      "generator": {
        "engine": "Vulnogram 0.1.0-dev"
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf",
            "refsource": "MISC",
            "url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf"
          }
        ]
      },
      "source": {
        "discovery": "UNKNOWN"
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:m3024-lve_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "5CD58564-8A6D-4A4A-94BC-1163A7512951",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:m3024-lve:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "51A676F7-81A2-470F-B5AE-0684596CD13F",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:m3025-ve_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "19DB8F9A-73CB-48EE-B493-0C89BE2338FE",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:m3025-ve:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "AB751571-D477-4D70-90DE-7B956A752072",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:m7014_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "096D5F50-DFCB-436F-B17F-59DAB4CCDB11",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:m7014:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "37A5B7B4-9C9B-48A7-8EF6-B511BEA39456",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:m7016_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "55063889-8669-4EEA-AAFD-AC8C37F61A99",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:m7016:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "36508E54-ED34-4706-AF59-49ACBB21B60A",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:p1214-e_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "D7535314-78B5-403A-BC93-FBBDB769821C",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:p1214-e:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "A0562D86-35D8-42A2-9784-BEF72209C2A0",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:p7214_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "722C5352-15D9-48DD-B64A-B8EC10DA15EC",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:p7214:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "6F038A16-4542-4249-A06E-80E5456C70BC",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:p7216_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "BC60D72C-6B09-4629-A28B-D0F4248F81C0",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:p7216:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "056BA315-23A3-431A-9F7B-A1758808DB6E",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:q7401_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "4B802948-6660-49AC-BBA9-7441A525D60C",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:q7401:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "15FBB812-E5B2-4152-AA6C-64138094FF90",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:q7404_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "087E2F65-B69A-42DA-A354-EAE4D83EDB6D",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:q7404:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "F6021F9F-3109-4D52-9C41-478AC758DBFC",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:q7414_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "AF8E6DBA-575D-4DC7-847D-4E626617A199",
                    "versionEndExcluding": "5.51.7.7",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:q7414:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "C5592008-9957-49AD-975A-C1F6F77817AA",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:axis:q7424-r_mk_ii_firmware:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "75C0A14B-E3E8-4942-B87C-D71158B87905",
                    "versionEndExcluding": "5.51.3.9",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:h:axis:q7424-r_mk_ii:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "6093F4BD-5C7E-4EE9-BA75-76FDA3D245FB",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Brandon\nRothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Axis has released patched AXIS OS\nversions for the highlighted flaw. Please refer to the Axis security advisory\nfor more information and solution. \n\n\n\n\n\n\n\n"
          },
          {
            "lang": "es",
            "value": "Brandon Rothel de QED Secure Solutions descubri\u00f3 que la API VAPIX tcptest.cgi no ten\u00eda una validaci\u00f3n de entrada suficiente que permitiera una posible ejecuci\u00f3n remota de c\u00f3digo. Esta falla solo puede explotarse despu\u00e9s de autenticarse con una cuenta de servicio con privilegios de operador o administrador. El impacto de explotar esta vulnerabilidad es menor con privilegios de operador en comparaci\u00f3n con cuentas de servicio con privilegios de administrador. Axis ha lanzado versiones parcheadas del sistema operativo AXIS para la falla resaltada. Consulte el aviso de seguridad de Axis para obtener m\u00e1s informaci\u00f3n y soluciones."
          }
        ],
        "id": "CVE-2023-5677",
        "lastModified": "2024-02-13T00:38:00.893",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 2.8,
              "impactScore": 5.9,
              "source": "nvd@nist.gov",
              "type": "Primary"
            },
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              },
              "exploitabilityScore": 2.8,
              "impactScore": 3.4,
              "source": "product-security@axis.com",
              "type": "Secondary"
            }
          ]
        },
        "published": "2024-02-05T06:15:46.690",
        "references": [
          {
            "source": "product-security@axis.com",
            "tags": [
              "Vendor Advisory"
            ],
            "url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf"
          }
        ],
        "sourceIdentifier": "product-security@axis.com",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-94"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

GHSA-WPW2-F6X3-8F7J

Vulnerability from github – Published: 2024-02-05 06:30 – Updated: 2025-05-15 12:30

Details

Severity ?

6.3 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-5677"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-78",
      "CWE-94"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-02-05T06:15:46Z",
    "severity": "MODERATE"
  },
  "details": "Brandon\nRothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Axis has released patched AXIS OS\nversions for the highlighted flaw. Please refer to the Axis security advisory\nfor more information and solution.",
  "id": "GHSA-wpw2-f6x3-8f7j",
  "modified": "2025-05-15T12:30:26Z",
  "published": "2024-02-05T06:30:29Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5677"
    },
    {
      "type": "WEB",
      "url": "https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf"
    },
    {
      "type": "WEB",
      "url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
      "type": "CVSS_V3"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-5677 (GCVE-0-2023-5677)

CERTFR-2024-AVI-0095

Solution

CERTFR-2024-AVI-0095

Solution

FKIE_CVE-2023-5677

GSD-2023-5677

GHSA-WPW2-F6X3-8F7J

Tags

Sightings

Nomenclature