CVE-2023-5677 - Vulnerability Details

Vendors	Products
Axis	M3024-lve M3024-lve Firmware M3025-ve M3025-ve Firmware M7014 M7014 Firmware M7016 M7016 Firmware P1214-e P1214-e Firmware P7214 P7214 Firmware P7216 P7216 Firmware Q7401 Q7401 Firmware Q7404 Q7404 Firmware Q7414 Q7414 Firmware Q7424-r Mk Ii Q7424-r Mk Ii Firmware

Link	Providers
https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf
https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf

Type	Values Removed	Values Added
Description	Brandon Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.	Brandon Rothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Please refer to the Axis security advisory for more information and solution.
Title	Insufficient input validation in VAPIX API tcptext.cgi
References		https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf

Type	Values Removed	Values Added
Description	Brandon Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.	Brandon Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.
Weaknesses		CWE-78

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-5677", "assignerOrgId": "f2daf9a0-02c2-4b83-a01d-63b3b304b807", "state": "PUBLISHED", "assignerShortName": "Axis", "dateReserved": "2023-10-20T07:48:06.861Z", "datePublished": "2024-02-05T05:20:24.483Z", "dateUpdated": "2025-05-15T11:01:31.331Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "AXIS OS", "vendor": "Axis Communications AB", "versions": [{"status": "affected", "version": "AXIS OS 5.51"}, {"status": "affected", "version": "AXIS OS 6.50"}]}], "datePublic": "2024-02-05T05:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>Brandon\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API <i>tcptest.cgi</i>\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Please refer to the Axis security advisory\nfor more information and solution. </p>"}], "value": "Brandon\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Please refer to the Axis security advisory\nfor more information and solution."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-78", "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "f2daf9a0-02c2-4b83-a01d-63b3b304b807", "shortName": "Axis", "dateUpdated": "2025-05-15T11:01:31.331Z"}, "references": [{"url": "https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:07:32.550Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf", "tags": ["x_transferred"]}]}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2023-5677 (string)

assignerOrgId : f2daf9a0-02c2-4b83-a01d-63b3b304b807 (string)

state : PUBLISHED (string)

assignerShortName : Axis (string)

dateReserved : 2023-10-20T07:48:06.861Z (string)

datePublished : 2024-02-05T05:20:24.483Z (string)

dateUpdated : 2025-05-15T11:01:31.331Z (string)

}

containers : { »

cna : { »

affected : [ »

0 : { »

defaultStatus : unaffected (string)

product : AXIS OS (string)

vendor : Axis Communications AB (string)

versions : [ »

0 : { »

status : affected (string)

version : AXIS OS 5.51 (string)

}

1 : { »

status : affected (string)

version : AXIS OS 6.50 (string)

}

]

}

]

datePublic : 2024-02-05T05:00:00.000Z (string)

descriptions : [ »

0 : { »

lang : en (string)

supportingMedia : [ »

0 : { »

base64 : false (boolean)

type : text/html (string)

value : <p>Brandon Rothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API <i>tcptest.cgi</i> did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Please refer to the Axis security advisory for more information and solution. </p> (string)

}

]

value : Brandon Rothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Please refer to the Axis security advisory for more information and solution. (string)

}

]

metrics : [ »

0 : { »

cvssV3_1 : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : LOW (string)

baseScore : 6.3 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : LOW (string)

integrityImpact : LOW (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L (string)

version : 3.1 (string)

}

format : CVSS (string)

scenarios : [ »

0 : { »

lang : en (string)

value : GENERAL (string)

}

]

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

cweId : CWE-78 (string)

description : CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (string)

lang : en (string)

type : CWE (string)

}

]

}

]

providerMetadata : { »

orgId : f2daf9a0-02c2-4b83-a01d-63b3b304b807 (string)

shortName : Axis (string)

dateUpdated : 2025-05-15T11:01:31.331Z (string)

}

references : [ »

0 : { »

url : https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf (string)

}

]

source : { »

discovery : UNKNOWN (string)

}

x_generator : { »

engine : Vulnogram 0.1.0-dev (string)

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T08:07:32.550Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

]

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:m3024-lve_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5CD58564-8A6D-4A4A-94BC-1163A7512951", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:m3024-lve:-:*:*:*:*:*:*:*", "matchCriteriaId": "51A676F7-81A2-470F-B5AE-0684596CD13F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:m3025-ve_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "19DB8F9A-73CB-48EE-B493-0C89BE2338FE", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:m3025-ve:-:*:*:*:*:*:*:*", "matchCriteriaId": "AB751571-D477-4D70-90DE-7B956A752072", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:m7014_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "096D5F50-DFCB-436F-B17F-59DAB4CCDB11", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:m7014:-:*:*:*:*:*:*:*", "matchCriteriaId": "37A5B7B4-9C9B-48A7-8EF6-B511BEA39456", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:m7016_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "55063889-8669-4EEA-AAFD-AC8C37F61A99", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:m7016:-:*:*:*:*:*:*:*", "matchCriteriaId": "36508E54-ED34-4706-AF59-49ACBB21B60A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:p1214-e_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D7535314-78B5-403A-BC93-FBBDB769821C", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:p1214-e:-:*:*:*:*:*:*:*", "matchCriteriaId": "A0562D86-35D8-42A2-9784-BEF72209C2A0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:p7214_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "722C5352-15D9-48DD-B64A-B8EC10DA15EC", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:p7214:-:*:*:*:*:*:*:*", "matchCriteriaId": "6F038A16-4542-4249-A06E-80E5456C70BC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:p7216_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BC60D72C-6B09-4629-A28B-D0F4248F81C0", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:p7216:-:*:*:*:*:*:*:*", "matchCriteriaId": "056BA315-23A3-431A-9F7B-A1758808DB6E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:q7401_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4B802948-6660-49AC-BBA9-7441A525D60C", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:q7401:-:*:*:*:*:*:*:*", "matchCriteriaId": "15FBB812-E5B2-4152-AA6C-64138094FF90", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:q7404_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "087E2F65-B69A-42DA-A354-EAE4D83EDB6D", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:q7404:-:*:*:*:*:*:*:*", "matchCriteriaId": "F6021F9F-3109-4D52-9C41-478AC758DBFC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:q7414_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AF8E6DBA-575D-4DC7-847D-4E626617A199", "versionEndExcluding": "5.51.7.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:q7414:-:*:*:*:*:*:*:*", "matchCriteriaId": "C5592008-9957-49AD-975A-C1F6F77817AA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:axis:q7424-r_mk_ii_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "75C0A14B-E3E8-4942-B87C-D71158B87905", "versionEndExcluding": "5.51.3.9", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:axis:q7424-r_mk_ii:-:*:*:*:*:*:*:*", "matchCriteriaId": "6093F4BD-5C7E-4EE9-BA75-76FDA3D245FB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Brandon\nRothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi\ndid not have a sufficient input validation allowing for a possible remote code\nexecution. This flaw can only be exploited after authenticating with an\noperator- or administrator-privileged service account. The impact of exploiting\nthis vulnerability is lower with operator-privileges compared to\nadministrator-privileges service accounts. Please refer to the Axis security advisory\nfor more information and solution."}, {"lang": "es", "value": "Brandon Rothel de QED Secure Solutions descubri\u00f3 que la API VAPIX tcptest.cgi no ten\u00eda una validaci\u00f3n de entrada suficiente que permitiera una posible ejecuci\u00f3n remota de c\u00f3digo. Esta falla solo puede explotarse despu\u00e9s de autenticarse con una cuenta de servicio con privilegios de operador o administrador. El impacto de explotar esta vulnerabilidad es menor con privilegios de operador en comparaci\u00f3n con cuentas de servicio con privilegios de administrador. Axis ha lanzado versiones parcheadas del sistema operativo AXIS para la falla resaltada. Consulte el aviso de seguridad de Axis para obtener m\u00e1s informaci\u00f3n y soluciones."}], "id": "CVE-2023-5677", "lastModified": "2025-05-15T10:15:23.943", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.4, "source": "product-security@axis.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-02-05T06:15:46.690", "references": [{"source": "product-security@axis.com", "url": "https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf"}], "sourceIdentifier": "product-security@axis.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "product-security@axis.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:m3024-lve_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 5CD58564-8A6D-4A4A-94BC-1163A7512951 (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:m3024-lve:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 51A676F7-81A2-470F-B5AE-0684596CD13F (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:m3025-ve_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 19DB8F9A-73CB-48EE-B493-0C89BE2338FE (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:m3025-ve:-:*:*:*:*:*:*:* (string)

matchCriteriaId : AB751571-D477-4D70-90DE-7B956A752072 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:m7014_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 096D5F50-DFCB-436F-B17F-59DAB4CCDB11 (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:m7014:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 37A5B7B4-9C9B-48A7-8EF6-B511BEA39456 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

3 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:m7016_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 55063889-8669-4EEA-AAFD-AC8C37F61A99 (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:m7016:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 36508E54-ED34-4706-AF59-49ACBB21B60A (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

4 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:p1214-e_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : D7535314-78B5-403A-BC93-FBBDB769821C (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:p1214-e:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A0562D86-35D8-42A2-9784-BEF72209C2A0 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

5 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:p7214_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 722C5352-15D9-48DD-B64A-B8EC10DA15EC (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:p7214:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6F038A16-4542-4249-A06E-80E5456C70BC (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

6 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:p7216_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : BC60D72C-6B09-4629-A28B-D0F4248F81C0 (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:p7216:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 056BA315-23A3-431A-9F7B-A1758808DB6E (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

7 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:q7401_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 4B802948-6660-49AC-BBA9-7441A525D60C (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:q7401:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 15FBB812-E5B2-4152-AA6C-64138094FF90 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

8 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:q7404_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 087E2F65-B69A-42DA-A354-EAE4D83EDB6D (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:q7404:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F6021F9F-3109-4D52-9C41-478AC758DBFC (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

9 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:q7414_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : AF8E6DBA-575D-4DC7-847D-4E626617A199 (string)

versionEndExcluding : 5.51.7.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:q7414:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C5592008-9957-49AD-975A-C1F6F77817AA (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

10 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:axis:q7424-r_mk_ii_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 75C0A14B-E3E8-4942-B87C-D71158B87905 (string)

versionEndExcluding : 5.51.3.9 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:axis:q7424-r_mk_ii:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6093F4BD-5C7E-4EE9-BA75-76FDA3D245FB (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Brandon Rothel from QED Secure Solutions and Sam Hanson of Dragos have found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact of exploiting this vulnerability is lower with operator-privileges compared to administrator-privileges service accounts. Please refer to the Axis security advisory for more information and solution. (string)

}

1 : { »

lang : es (string)

value : Brandon Rothel de QED Secure Solutions descubrió que la API VAPIX tcptest.cgi no tenía una validación de entrada suficiente que permitiera una posible ejecución remota de código. Esta falla solo puede explotarse después de autenticarse con una cuenta de servicio con privilegios de operador o administrador. El impacto de explotar esta vulnerabilidad es menor con privilegios de operador en comparación con cuentas de servicio con privilegios de administrador. Axis ha lanzado versiones parcheadas del sistema operativo AXIS para la falla resaltada. Consulte el aviso de seguridad de Axis para obtener más información y soluciones. (string)

}

]

id : CVE-2023-5677 (string)

lastModified : 2025-05-15T10:15:23.943 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : LOW (string)

baseScore : 6.3 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : LOW (string)

integrityImpact : LOW (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L (string)

version : 3.1 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 3.4 (number)

source : product-security@axis.com (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 8.8 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 5.9 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2024-02-05T06:15:46.690 (string)

references : [ »

0 : { »

source : product-security@axis.com (string)

url : https://www.axis.com/dam/public/0a/47/d1/cve-2023-5677-en-US-483444.pdf (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://www.axis.com/dam/public/a9/dd/f1/cve-2023-5677-en-US-424335.pdf (string)

}

]

sourceIdentifier : product-security@axis.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-78 (string)

}

]

source : product-security@axis.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-94 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object