CVE-2017-20049

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.1010%

EPSS Percentile21.63th

PublishedJun 15, 2022

Last ModifiedNov 21, 2024

Vulnerability Description

A vulnerability, was found in legacy Axis devices such as P3225 and M3005. This affects an unknown part of the component CGI Script. The manipulation leads to improper privilege management. It is possible to initiate the attack remotely.

Affected Platforms (CPE)

💻

Axis

P1204 Firmware

<= 5.50.4

💻

Axis

P3225 Firmware

<= 6.30.1

💻

Axis

P3367 Firmware

<= 6.10.1.2

💻

Axis

M3045 Firmware

<= 6.15.4.1

💻

Axis

M3005 Firmware

<= 5.50.5.7

💻

Axis

M3007 Firmware

<= 6.30.1.1

References & Advisories

🔗 https://www.axis.com/dam/public/df/f3/dd/cve-2017-20049-en-US-376956.pdf

Vulnerability Description

Affected Platforms (CPE)

P1204 Firmware

P3225 Firmware

P3367 Firmware

M3045 Firmware

M3005 Firmware

M3007 Firmware

References & Advisories

Related Vulnerabilities