CVE-2017-20049
Summary
| CVE | CVE-2017-20049 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-06-15 18:15:00 UTC |
| Updated | 2023-11-07 02:43:00 UTC |
| Description | A vulnerability, was found in legacy Axis devices such as P3225 and M3005. This affects an unknown part of the component CGI Script. The manipulation leads to improper privilege management. It is possible to initiate the attack remotely. |
Risk And Classification
Problem Types: CWE-269
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Axis | M3005 | - | All | All | All |
| Operating System | Axis | M3005 Firmware | All | All | All | All |
| Hardware | Axis | M3007 | - | All | All | All |
| Operating System | Axis | M3007 Firmware | All | All | All | All |
| Hardware | Axis | M3045 | - | All | All | All |
| Operating System | Axis | M3045 Firmware | All | All | All | All |
| Hardware | Axis | P1204 | - | All | All | All |
| Operating System | Axis | P1204 Firmware | All | All | All | All |
| Hardware | Axis | P3225 | - | All | All | All |
| Operating System | Axis | P3225 Firmware | All | All | All | All |
| Hardware | Axis | P3367 | - | All | All | All |
| Operating System | Axis | P3367 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| www.axis.com/dam/public/df/f3/dd/cve-2017-20049-en-US-376956.pdf | MISC | www.axis.com | |
| CVE-2017-20049 | AXIS P1204/P3225/P3367/M3045/M3005/M3007 CGI Script privileges management | N/A | vuldb.com | |
| Full Disclosure: Axis Camera Multiple Vulnerabilities | N/A | seclists.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.