← voltar
CVE-2024-7696

CVE-2024-7696

CVSS 6.3 MEDIUMEPSS 0.2%CWE-117
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 6.3EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
07 jan 2025Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for an authenticated malicious client to tamper with audit log creation in AXIS Camera Station, or perform a Denial-of-Service attack on the AXIS Camera Station server using maliciously crafted audit log entries. Axis has released a patched version for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Produtos afetados
Axis Communications AB · AXIS Camera Station Pro

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.axis.com/dam/public/b3/53/03/cve-2024-7696-en-US-459552.pdf