Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2026-1185

Summary
Assigner-Axis
Assigner Org ID-f2daf9a0-02c2-4b83-a01d-63b3b304b807
Published At-12 May, 2026 | 05:49
Updated At-13 May, 2026 | 03:57
Rejected At-
Credits

A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. This vulnerability can only be exploited if an attacker can log in to the Axis device using SSH.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:Axis
Assigner Org ID:f2daf9a0-02c2-4b83-a01d-63b3b304b807
Published At:12 May, 2026 | 05:49
Updated At:13 May, 2026 | 03:57
Rejected At:
▼CVE Numbering Authority (CNA)

A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. This vulnerability can only be exploited if an attacker can log in to the Axis device using SSH.

Affected Products
Vendor
Axis Communications AB
Product
AXIS OS
Default Status
unaffected
Versions
Affected
  • From 12.0.0 before 12.10.36 (semver)
Problem Types
TypeCWE IDDescription
CWECWE-732CWE-732: Incorrect Permission Assignment for Critical Resource
Type: CWE
CWE ID: CWE-732
Description: CWE-732: Incorrect Permission Assignment for Critical Resource
Metrics
VersionBase scoreBase severityVector
3.15.4MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Version: 3.1
Base score: 5.4
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
finder
Cookiejack15
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.axis.com/dam/public/69/df/8d/cve-2026-1185pdf-en-US-530733.pdf
N/A
Hyperlink: https://www.axis.com/dam/public/69/df/8d/cve-2026-1185pdf-en-US-530733.pdf
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:product-security@axis.com
Published At:12 May, 2026 | 07:16
Updated At:12 May, 2026 | 14:13

A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. This vulnerability can only be exploited if an attacker can log in to the Axis device using SSH.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.15.4MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Type: Secondary
Version: 3.1
Base score: 5.4
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
CPE Matches
Weaknesses
CWE IDTypeSource
CWE-732Secondaryproduct-security@axis.com
CWE ID: CWE-732
Type: Secondary
Source: product-security@axis.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.axis.com/dam/public/69/df/8d/cve-2026-1185pdf-en-US-530733.pdfproduct-security@axis.com
N/A
Hyperlink: https://www.axis.com/dam/public/69/df/8d/cve-2026-1185pdf-en-US-530733.pdf
Source: product-security@axis.com
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

7Records found
CVE-2023-5800
Matching Score-8
Assigner-Axis Communications AB
ShareView Details
Matching Score-8
Assigner-Axis Communications AB
CVSS Score-5.4||MEDIUM
EPSS-0.17% / 38.37%
||
7 Day CHG~0.00%
Published-05 Feb, 2024 | 05:20
Updated-17 Jun, 2025 | 21:29
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Insufficient input validation in VAPIX API create_overlay.cgi

Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.

Action-Not Available
Vendor-axisAxis Communications AB
Product-axis_os_2020axis_osaxis_os_2022AXIS OS
CWE ID-CWE-35
Path Traversal: '.../...//'
CWE ID-CWE-94
Improper Control of Generation of Code ('Code Injection')
CVE-2025-0926
Matching Score-6
Assigner-Axis Communications AB
ShareView Details
Matching Score-6
Assigner-Axis Communications AB
CVSS Score-5.9||MEDIUM
EPSS-0.11% / 29.37%
||
7 Day CHG~0.00%
Published-23 Apr, 2025 | 05:22
Updated-14 Jan, 2026 | 17:45
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for a non-admin user to remove system files causing a boot loop by redirecting a file deletion when recording video. Axis has released a patched version for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.

Action-Not Available
Vendor-axisAxis Communications AB
Product-camera_station_proAXIS Camera Station Pro
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2026-0541
Matching Score-6
Assigner-Axis Communications AB
ShareView Details
Matching Score-6
Assigner-Axis Communications AB
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 1.41%
||
7 Day CHG~0.00%
Published-12 May, 2026 | 05:42
Updated-13 May, 2026 | 03:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

ACAP applications can gain elevated privileges due to improper input validation during the installation process, potentially leading to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP application.

Action-Not Available
Vendor-Axis Communications AB
Product-AXIS OS
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2025-8108
Matching Score-6
Assigner-Axis Communications AB
ShareView Details
Matching Score-6
Assigner-Axis Communications AB
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 6.34%
||
7 Day CHG~0.00%
Published-11 Nov, 2025 | 07:10
Updated-26 Feb, 2026 | 16:58
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP application.

Action-Not Available
Vendor-axisAxis Communications AB
Product-a1810-bf9114_main_unitq3538-slvefa51-bm3086-vq3626-veq1656-dlep1467-lep3288-lveq1715m3215-lvef9111_mk_ii_main_unitd201-s_xpt_q6075q1728-leq6225-lep3275-lvq6315-leq1800-lem4328-pp5654-e_mk_iic1310-e_mk_iis3008_mk_iip1468-xlep5655-efa54d2210-veq1656-bleq1800-le-3w120m3216-lveq1615_mk_iiip3737-pleq8752-e_mk_iif9114-btp3267-lved3110_mk_iip3267-lvm5074p3265-lvp5676-lem7104w110m3128-lvef9104-b_mk_ii_main_unitp1518-leq2101-tep3748-plveq3536-lveq3546-lvep3268-slvem4318-plrxf40-q1785m4327-pp3265-lve-3p3275-lves3008q3839-spvec1720p4707-plvep3285-lvem2035-lep1387-bq1656-lem4225-lvep4708-plvep3268-lvp1468-leq1961-tep3287-lves4000m4308-plem4218-vq3558-lvep1465-lep3265-vp3278-lvec1210-eexcam_xpt_q6075m4215-vw100xfq1656p1388-lep1465-le-3c1610-vea1610_\(-b\)m2036-leq1971-eq6358-lep3268-lveq6075-eq6135-lec1710d6310f9104-b_main_uniti8307-vep3738-plep3818-pvep3267-lve_micq1961-xted1110c1511d2110-vef9111-r_mk_ii_main_uniti7020q1656-bv5938f9114-b-r_mk_ii_main_unitp3935-lrq2111-ep3277-lvep1385-bem3126-lvem4318-plveq6318-lem1135p1385-bc1410_mk_iim3086-v_micm1075-ld4200-vep9117-pvq1728q6300-ep3827-pveq6078-ec1111-ep3285-lvm7116p1385m4216-lvm4317-plrm5075c1211-ec8110m1137-e_mk_iim3057-plr_mk_iic6110m4227-lvep3925-lrep3925-rq3556-lvea1210_\(-b\)q8752-ef9111_main_unitaxis_osp3265-lveq3819-pveq6020-ea8207-ve_mk_iim5526-ew102p1387w101q1806-lei7010-vep1388p1388-bp3735-plexc1311p7316c1110-ep1387-lea1601q3548-lveq8615-em3085-vm1137q6075-sec8210p3278-lvm5000v5925q1686-dlep3277-lvp5654-em4218-lvp1475-lem5075-gp3288-lvs3016p4705-plvei8016-lveq1972-ef9114-b_main_unitq6075-sq9307-lvq1809-lep1518-em4317-plveq1656-beq3628-veq1615-le_mk_iiiq6355-lexpq1785m5000-gq4809-pveexcam_xf_q1785a1710-bd4100-ve_mk_iip3747-plvefa51p1385-eq3538-lvep1388-bep1387-bem1055-lc1510m4216-vp1275_mk_iiq1656m4228-lvea1214m3905-rq1808-lep1245_mk_iip7304q1798-lep3905-r_mk_iiip1265_mk_iiq2112-eq1805-leq3839-pveq6074m3125-lvei8116-eq6075w401m1135-e_mk_iiq6074-em3088-vp3287-lvm4215-lvi7010-safetyAXIS OS
CWE ID-CWE-1287
Improper Validation of Specified Type of Input
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2025-6779
Matching Score-6
Assigner-Axis Communications AB
ShareView Details
Matching Score-6
Assigner-Axis Communications AB
CVSS Score-6.7||MEDIUM
EPSS-0.01% / 2.99%
||
7 Day CHG~0.00%
Published-11 Nov, 2025 | 07:05
Updated-26 Feb, 2026 | 16:58
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP application.

Action-Not Available
Vendor-axisAxis Communications AB
Product-a1810-bf9114_main_unitq3538-slvefa51-bm3086-vq3626-veq1656-dlep1467-lep3288-lveq1715m3215-lvef9111_mk_ii_main_unitd201-s_xpt_q6075q1728-leq6225-lep3275-lvq6315-leq1800-lem4328-pp5654-e_mk_iic1310-e_mk_iis3008_mk_iip1468-xlep5655-efa54d2210-veq1656-bleq1800-le-3w120m3216-lveq1615_mk_iiip3737-pleq8752-e_mk_iif9114-btp3267-lved3110_mk_iip3267-lvm5074p3265-lvp5676-lem7104w110m3128-lvef9104-b_mk_ii_main_unitp1518-leq2101-tep3748-plveq3536-lveq3546-lvep3268-slvem4318-plrxf40-q1785m4327-pp3265-lve-3p3275-lves3008q3839-spvec1720p4707-plvep3285-lvem2035-lep1387-bq1656-lem4225-lvep4708-plvep3268-lvp1468-leq1961-tep3287-lves4000m4308-plem4218-vq3558-lvep1465-lep3265-vp3278-lvec1210-eexcam_xpt_q6075m4215-vw100xfq1656p1388-lep1465-le-3c1610-vea1610_\(-b\)m2036-leq1971-eq6358-lep3268-lveq6075-eq6135-lec1710d6310f9104-b_main_uniti8307-vep3738-plep3818-pvep3267-lve_micq1961-xted1110c1511d2110-vef9111-r_mk_ii_main_uniti7020q1656-bv5938f9114-b-r_mk_ii_main_unitp3935-lrq2111-ep3277-lvep1385-bem3126-lvem4318-plveq6318-lem1135p1385-bc1410_mk_iim3086-v_micm1075-ld4200-vep9117-pvq1728q6300-ep3827-pveq6078-ec1111-ep3285-lvm7116p1385m4216-lvm4317-plrm5075c1211-ec8110m1137-e_mk_iim3057-plr_mk_iic6110m4227-lvep3925-lrep3925-rq3556-lvea1210_\(-b\)q8752-ef9111_main_unitaxis_osp3265-lveq3819-pveq6020-ea8207-ve_mk_iim5526-ew102p1387w101q1806-lei7010-vep1388p1388-bp3735-plexc1311p7316c1110-ep1387-lea1601q3548-lveq8615-em3085-vm1137q6075-sec8210p3278-lvm5000v5925q1686-dlep3277-lvp5654-em4218-lvp1475-lem5075-gp3288-lvs3016p4705-plvei8016-lveq1972-ef9114-b_main_unitq6075-sq9307-lvq1809-lep1518-em4317-plveq1656-beq3628-veq1615-le_mk_iiiq6355-lexpq1785m5000-gq4809-pveexcam_xf_q1785a1710-bd4100-ve_mk_iip3747-plvefa51p1385-eq3538-lvep1388-bep1387-bem1055-lc1510m4216-vp1275_mk_iiq1656m4228-lvea1214m3905-rq1808-lep1245_mk_iip7304q1798-lep3905-r_mk_iiip1265_mk_iiq2112-eq1805-leq3839-pveq6074m3125-lvei8116-eq6075w401m1135-e_mk_iiq6074-em3088-vp3287-lvm4215-lvi7010-safetyAXIS OS
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2023-5651
Matching Score-4
Assigner-WPScan
ShareView Details
Matching Score-4
Assigner-WPScan
CVSS Score-5.4||MEDIUM
EPSS-0.04% / 12.61%
||
7 Day CHG~0.00%
Published-20 Nov, 2023 | 18:55
Updated-01 Oct, 2024 | 15:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
WP Hotel Booking < 2.0.8 - Subscriber+ Arbitrary Post Deletion

The WP Hotel Booking WordPress plugin before 2.0.8 does not have authorisation and CSRF checks, as well as does not ensure that the package to be deleted is a package, allowing any authenticated users, such as subscriber to delete arbitrary posts

Action-Not Available
Vendor-UnknownThimPress (PhysCode)
Product-wp_hotel_bookingWP Hotel Booking
CWE ID-CWE-862
Missing Authorization
CWE ID-CWE-352
Cross-Site Request Forgery (CSRF)
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2023-38991
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-5.4||MEDIUM
EPSS-0.04% / 13.61%
||
7 Day CHG~0.00%
Published-03 Aug, 2023 | 00:00
Updated-18 Oct, 2024 | 13:54
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue in the delete function in the ActModelController class of jeesite v1.2.6 allows authenticated attackers to arbitrarily delete models created by the Administrator.

Action-Not Available
Vendor-jeesiten/a
Product-jeesiten/a
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
Details not found