CVE-2015-8258

HIGH

AXIS Communications <5.80.x - Code Injection

Title source: llm

Description

AXIS Communications products with firmware through 5.80.x allow remote attackers to modify arbitrary files as root via vectors involving Open Script Editor, aka a "resource injection vulnerability."

Exploits (1)

exploitdb WRITEUP

by Orwelllabs · textwebappshardware

https://www.exploit-db.com/exploits/41625

View Code ZIP pw:eip

References (1)

Core 1

Core References

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/41625/

Scores

CVSS v3 7.5

EPSS 0.1736

EPSS Percentile 95.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE

CWE-74

Status published

Products (2)

axis/axis_communications_firmware < 5.80.3

n/a/AXIS Communications products with firmware through 5.80.x AXIS Communications products with firmware through 5.80.x

Published Apr 10, 2017

Tracked Since Feb 18, 2026