The web-based administration capability for various Axis Network Camera products allows remote malicious users to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
axis 2110 network camera |
||
axis 2120 network camera |
||
axis 2100 network camera |
||
axis 250s video server |
||
axis 2130 ptz network camera |
||
axis 2400 video server |
||
axis 2401 video server |
||
axis 2420 network camera |
||
axis 2460 network dvr |
Vulmon