CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2017-20049

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile21.63th
Published2022年6月15日
Last Modified2024年11月21日

Vulnerability Description

A vulnerability, was found in legacy Axis devices such as P3225 and M3005. This affects an unknown part of the component CGI Script. The manipulation leads to improper privilege management. It is possible to initiate the attack remotely.

Affected Platforms (CPE)

💻
Axis

P1204 Firmware

<= 5.50.4
💻
Axis

P3225 Firmware

<= 6.30.1
💻
Axis

P3367 Firmware

<= 6.10.1.2
💻
Axis

M3045 Firmware

<= 6.15.4.1
💻
Axis

M3005 Firmware

<= 5.50.5.7
💻
Axis

M3007 Firmware

<= 6.30.1.1

References & Advisories

🔗 https://www.axis.com/dam/public/df/f3/dd/cve-2017-20049-en-US-376956.pdf
🔗 https://www.axis.com/dam/public/df/f3/dd/cve-2017-20049-en-US-376956.pdf

相關漏洞威脅

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...

CVE-2026-487237.8

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36...