CVE-2018-9158

HIGH

AXIS M1033-W Firmware 5.40.5.1 - Denial of Service via IPv4 Flood Attack

Title source: llm
STIX 2.1

Description

An issue was discovered on AXIS M1033-W (IP camera) Firmware version 5.40.5.1 devices. They don't employ a suitable mechanism to prevent a DoS attack, which leads to a response time delay. An attacker can use the hping3 tool to perform an IPv4 flood attack, and the services are interrupted from attack start to end.

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.slideshare.net/secret/HpAEwK5qo5U4b1

Scores

CVSS v3 7.5
EPSS 0.0128
EPSS Percentile 66.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-20
Status published
Products (1)
axis/m1033-w_firmware 5.40.5.1
Published Apr 01, 2018
Tracked Since Feb 18, 2026