Axis Discovers Vulnerability in AXIS OS, Releases Patched Versions
CVE-2024-47257

7.5HIGH

Key Information:

Vendor: Axis Communications Ab
Status: Axis Q6128-e Ptz Network Camera; Axis P1428-e Network Camera
Vendor: CVE Published:; 26 November 2024

What is CVE-2024-47257?

Certain Axis devices exhibit vulnerabilities in their handling of specific ethernet frames, which can result in the devices becoming inaccessible within the network. This flaw could lead to significant operational disruptions for users relying on these devices. Axis Communications has released various patched versions of AXIS OS for the affected products still under support, providing necessary updates for enhanced security. For detailed information on the vulnerability and the associated patches, users are encouraged to consult the Axis security advisory.

Affected Version(s)

AXIS P1428-E Network Camera Linux 6.50

AXIS Q6128-E PTZ Network Camera Linux 6.50

References

https://www.axis.com/dam/public/b7/76/b2/cve-2024-47257pd...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 26, 2024
Vulnerability Reserved
Sep 23, 2024

Axis Communications Ab

What is CVE-2024-47257?

Affected Version(s)

References

CVSS V3.1

Timeline