CyberSec.Space Logo
Back to CVE Browser

CVE-2017-15885

MEDIUM
6.1
CVSS Severity Score
EPSS Score0.0680%
EPSS Percentile31.35th
PublishedOct 25, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

Reflected XSS in the web administration portal on the Axis 2100 Network Camera 2.03 allows an attacker to execute arbitrary JavaScript via the conf_Layout_OwnTitle parameter to view/view.shtml. NOTE: this might overlap CVE-2007-5214.

Affected Platforms (CPE)

💻
Axis

2100 Network Camera Firmware

= 2.03

References & Advisories

🔗 https://distributedcompute.com/2017/10/24/axis-2100-network-camera-2-03-xss-vulnerability/
🔗 https://distributedcompute.com/2017/10/24/axis-2100-network-camera-2-03-xss-vulnerability/

Related Vulnerabilities

CVE-2007-52139.3

Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 2100 Network Camera 2.02 with firmware 2.43 and earlier all...

CVE-2007-52124.3

Multiple cross-site scripting (XSS) vulnerabilities in the AXIS 2100 Network Camera 2.02 with firmware before 2.43 allow remote at...

CVE-2007-52144.3

Multiple cross-site scripting (XSS) vulnerabilities in the AXIS 2100 Network Camera 2.02 with firmware 2.43 and earlier allow remo...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...