CVE-2018-9158
HIGHAXIS M1033-W Firmware 5.40.5.1 - Denial of Service via IPv4 Flood Attack
Title source: llmDescription
An issue was discovered on AXIS M1033-W (IP camera) Firmware version 5.40.5.1 devices. They don't employ a suitable mechanism to prevent a DoS attack, which leads to a response time delay. An attacker can use the hping3 tool to perform an IPv4 flood attack, and the services are interrupted from attack start to end.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.slideshare.net/secret/HpAEwK5qo5U4b1
Scores
CVSS v3
7.5
EPSS
0.0128
EPSS Percentile
66.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (1)
axis/m1033-w_firmware
5.40.5.1
Published
Apr 01, 2018
Tracked Since
Feb 18, 2026