CVE-2015-8256

Опубликовано: 17 апр. 2017

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in Axis network cameras.

Ссылки

http://packetstormsecurity.com/files/141674/AXIS-Network-Camera-Cross-Site-Scripting.html
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/97699
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/39683/
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/141674/AXIS-Network-Camera-Cross-Site-Scripting.html
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/97699
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/39683/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:axis:network_camera_firmware:-:*:*:*:*:*:*:*

Одно из

cpe:2.3:h:axis:cannon_network_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:explosion-protected_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:fixed_box_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:fixed_bullet_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:fixed_dome_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:modular_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:onboard_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:panoramic_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:ptz_camera:-:*:*:*:*:*:*:*

cpe:2.3:h:axis:thermal_camera:-:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.0691

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-v8q7-9c5w-hcr4