Critical Threat

The communication protocol used between client and server had a flaw that could lead to an authenticated user performing a remote code execution attack.

To Axis’ knowledge, no known exploits exist publicly as of today and Axis is not aware that this has been exploited. Axis will not provide more detailed information about the vulnerability.

Axis has released a patch for this flaw with the following versions:

• • AXIS Camera Station Pro 6.9
• • AXIS Camera Station 5.58
• • AXIS Device Manager 5.32