File Upload Vulnerability in Axis Communications Product
CVE-2025-8998

3.1LOW

Key Information:

Vendor: Axis Communications Ab
Status: Axis Os
Vendor: CVE Published:; 11 November 2025

🔔 Create Axis Communications Ab Vulnerability Alert

What is CVE-2025-8998?

A file upload vulnerability has been discovered in Axis Network Cameras that allows authenticated users with operator or administrator privileges to upload files with specific names into a temporary directory. This may lead to process crashes, which can significantly affect the usability of the affected systems.

Affected Version(s)

AXIS OS 6.50.0 < 6.50.5.22

AXIS OS 7.0.0 < 8.40.90

AXIS OS 9.0.0 < 9.80.124

References

https://www.axis.com/dam/public/f5/62/80/cve-2025-8998pdf...

CVSS V3.1

Score:

3.1

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 11, 2025
Vulnerability Reserved
Aug 13, 2025

Credit

Mucoze

JSON