A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL.
References
| Link | Resource |
|---|---|
| https://d0ub1e-d.github.io/2022/12/30/exploit-db-1/ | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
07 Nov 2023, 04:07
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL. |
03 Mar 2023, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | ** UNSUPPORTED WHEN ASSIGNED ** A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL. |
02 Mar 2023, 16:24
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:axis:207w_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:axis:207w:-:*:*:*:*:*:*:* |
|
| CWE | CWE-79 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
| First Time |
Axis
Axis 207w Firmware Axis 207w |
|
| References | (MISC) https://d0ub1e-d.github.io/2022/12/30/exploit-db-1/ - Exploit, Third Party Advisory |
21 Feb 2023, 17:12
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-02-21 16:15
Updated : 2024-04-11 01:18
NVD link : CVE-2023-22984
Mitre link : CVE-2023-22984
CVE.ORG link : CVE-2023-22984
JSON object : View
Products Affected
axis
- 207w
- 207w_firmware
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')