exploitDog

CVE-2025-0361

Опубликовано: 08 апр. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

During an annual penetration test conducted on behalf of Axis Communications, Truesec discovered a flaw in the VAPIX Device Configuration framework that allowed for unauthenticated username enumeration through the VAPIX Device Configuration SSH Management API.

Ссылки

https://www.axis.com/dam/public/f4/9b/13/cve-2025-0361pdf-en-US-474511.pdf

EPSS

Процентиль: 16%

0.00051

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-203

Связанные уязвимости

GHSA-294x-x7jx-8864

CVSS3: 4.3

github

7 месяцев назад

During an annual penetration test conducted on behalf of Axis Communications, Truesec discovered a flaw in the VAPIX Device Configuration framework that allowed for unauthenticated username enumeration through the VAPIX Device Configuration SSH Management API.

EPSS

Процентиль: 16%

0.00051

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-203