Sensitive Data Exposure in Axis Communications Devices and Solutions
CVE-2025-6571

6MEDIUM

Key Information:

Vendor: Axis Communications Ab
Status: Axis Os
Vendor: CVE Published:; 11 November 2025

🔔 Create Axis Communications Ab Vulnerability Alert

What is CVE-2025-6571?

A vulnerability has been identified in various products by Axis Communications where a third-party component inadvertently exposes sensitive passwords through process arguments. This situation enables low-privileged users to potentially exploit the system and gain unauthorized access to sensitive credentials, leading to broader security implications.

Affected Version(s)

AXIS OS 12.0.0 < 12.6.66

AXIS OS 11.11.0 < 11.11.169

References

https://www.axis.com/dam/public/1f/f8/f0/cve-2025-6571pdf...

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2025
Vulnerability Reserved
Jun 24, 2025

Credit

URCQ

JSON