Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to bypass authentication via a .. (dot dot) in an HTTP POST request to ServerManager.srv, then use these privileges to conduct other activities, such as modifying files using editcgi.cgi.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Axis Network Camera And Video Server多个漏洞
Vulnerability Description
Axis Network Camera 2.40及其以前的版本和Video Server 3.12以前的版本存在目录遍历漏洞。远程攻击者借助ServerManager.srv的HTTP POST请求中的..(点 点)绕过认证,然后使用这些权限来进行其他活动,如使用editcgi.cgi修改文件。
CVSS Information
N/A
Vulnerability Type
N/A