User provided input is not sanitized on the AXIS License Plate Verifier specific “search.cgi” allowing for SQL injections. .This CVE has a CVSS3.1 score of… Read More »CVE-2023-21412 | AXIS License Plate Verifier
User provided input is not sanitized in the “Settings > Access Control” configuration interface allowing for arbitrary code execution. .This CVE has a CVSS3.1 score… Read More »CVE-2023-21411 | AXIS License Plate Verifier
User provided input is not sanitized on the AXIS License Plate Verifier specific “api.cgi” allowing for arbitrary code execution. .This CVE has a CVSS3.1 score… Read More »CVE-2023-21410 | AXIS License Plate Verifier
Due to insufficient file permissions, unprivileged users could gain access to unencrypted administrator credentials allowing the configuration of the application. .This CVE has a CVSS3.1… Read More »CVE-2023-21409 | AXIS License Plate Verifier
Due to insufficient file permissions, unprivileged users could gain access to unencrypted user credentials that are used in the integration interface towards 3rd party systems.… Read More »CVE-2023-21408 | AXIS License Plate Verifier
A broken access control was found allowing for privileged escalation of the operator account to gain administrator privileges..This CVE has a CVSS3.1 score of 8.8… Read More »CVE-2023-21407 | AXIS License Plate Verifier
Ariel Harush and Roy Hodir from OTORIO have found a flaw in the AXIS A1001 when communicating over OSDP. A heap-based buffer overflow was found… Read More »CVE-2023-21406 | AXIS A1001 Network Door Controller