Primary

Context

Axis Products Local Privilege Escalation Vulnerability

Vulnerability

Patched

A local privilege escalation vulnerability has been identified in Axis Device Manager versions prior to 5.32 and Axis Camera Station Pro versions prior to 6.7. This vulnerability arises from a flaw in the communication protocol between the server process and the service control, which could be exploited to gain elevated privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to gain elevated rights or access within the application or system.

Remediation

Axis has released patches for this vulnerability. Users of Axis Device Manager should upgrade to version 5.32. Users of Axis Camera Station Pro should upgrade to version 6.8. For further assistance, contact Axis Technical Support.

Added: Jul 11, 2025, 6:20 AM

Updated: Jul 11, 2025, 6:20 AM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Axis Products Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Axis AXIS Device Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating