CVE-2024-47257

HIGH

AXIS Q6128-E and P1428-E Network Cameras 6.50 - Denial of Service via Ethernet Frame Handling

Title source: llm

Description

Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet frames which could lead to the Axis device becoming unavailable in the network. Axis has released patched AXIS OS versions for the highlighted flaw for products that are still under AXIS OS software support. Please refer to the Axis security advisory for more information and solution.

References (1)

Core 1

Core References

Various Sources

https://www.axis.com/dam/public/b7/76/b2/cve-2024-47257pdf-en-US-458044.pdf

Scores

CVSS v3 7.5

EPSS 0.0048

EPSS Percentile 37.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-1284

Status published

Products (2)

Axis Communications AB/AXIS P1428-E Network Camera 6.50

Axis Communications AB/AXIS Q6128-E PTZ Network Camera 6.50

Published Nov 26, 2024

Tracked Since Feb 18, 2026