Unquoted Search Path Vulnerability in AXIS Optimizer by AXIS Communications
CVE-2025-10714

8.4HIGH

Key Information:

Vendor

Axis Communications Ab

Status
Axis Optimizer
Vendor
CVE Published:
11 November 2025

What is CVE-2025-10714?

AXIS Optimizer has a vulnerability due to an unquoted search path, which can allow local attackers with sufficient access rights to escalate privileges on Microsoft Windows systems. If exploited, it enables an attacker to execute unwanted actions with elevated permissions, compromising the integrity of the affected system.

Affected Version(s)

AXIS Optimizer 0 < 5.6.0.0

References

https://www.axis.com/dam/public/a2/c7/8c/cve-2025-10714pd...

CVSS V3.1

Score:
8.4
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Jonathan Eddy
JSON
.