Erik de Jong, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API ftptest.cgi did not have a sufficient input validation allowing for a possible command injection leading to being. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
When a URL is added to the map element, it is recorded in the database with sequential IDs. Rated low severity (CVSS 2.2), this vulnerability is remotely exploitable. No vendor patch available.
Fides is an open-source privacy engineering platform. Rated low severity (CVSS 2.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.