CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-8257

The devtools.sh script in AXIS network cameras allows remote authenticated users to execute arbitrary commands via shell metacharacters in the app parameter to (1) app_license.shtml, (2) app_license_custom.shtml, (3) app_index.shtml, or (4) app_params.shtml.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.226

EPSS Ranking 95.5%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

Products affected by CVE-2015-8257

Axis » Cannon Network Camera » Version: N/A

cpe:2.3:h:axis:cannon_network_camera:-
Axis » Explosion-Protected Camera » Version: N/A

cpe:2.3:h:axis:explosion-protected_camera:-
Axis » Fixed Box Camera » Version: N/A

cpe:2.3:h:axis:fixed_box_camera:-
Axis » Fixed Bullet Camera » Version: N/A

cpe:2.3:h:axis:fixed_bullet_camera:-
Axis » Fixed Dome Camera » Version: N/A

cpe:2.3:h:axis:fixed_dome_camera:-
Axis » Modular Camera » Version: N/A

cpe:2.3:h:axis:modular_camera:-
Axis » Onboard Camera » Version: N/A

cpe:2.3:h:axis:onboard_camera:-
Axis » Panoramic Camera » Version: N/A

cpe:2.3:h:axis:panoramic_camera:-
Axis » Ptz Camera » Version: N/A

cpe:2.3:h:axis:ptz_camera:-
Axis » Thermal Camera » Version: N/A

cpe:2.3:h:axis:thermal_camera:-
Axis » Network Camera Firmware » Version: N/A

cpe:2.3:o:axis:network_camera_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-8257

Products

Pricing

Contact Us