Security Advisory

CVE-2025-0361

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-08 05:38:02

Last updated 2025-04-08 14:50:47

Assigner Axis

State PUBLISHED

Description

During an annual penetration test conducted on behalf of Axis Communications, Truesec discovered a flaw in the VAPIX Device Configuration framework that allowed for unauthenticated username enumeration through the VAPIX Device Configuration SSH Management API.

← Browse all CVEs View on cve.org ↗