Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
6DescriptionCVE.org
The communication protocol used between the server process and the service control had a flaw that could lead to a local privilege escalation.
AnalysisAI
CVE-2025-30025 is a local privilege escalation vulnerability in the inter-process communication (IPC) protocol between a server process and its service control mechanism, caused by insecure deserialization (CWE-502). An authenticated local attacker with limited privileges can exploit this flaw to escalate to higher privileges, potentially gaining complete system compromise including confidentiality, integrity, and availability impact. While the CVSS score of 7.8 indicates high severity, the local attack vector and requirement for prior authentication mean this affects primarily multi-user systems or scenarios where an attacker has already gained initial local access.
Technical ContextAI
The vulnerability exists in the service control communication protocol (likely using serialized object deserialization) that facilitates IPC between privileged server processes and service management components. CWE-502 (Deserialization of Untrusted Data) indicates the root cause: the protocol deserializes data without proper validation, allowing an attacker to craft malicious serialized payloads that execute arbitrary code with elevated privileges. This is a classic IPC privilege escalation pattern where trust boundaries between service components are broken. The protocol likely uses binary serialization frameworks (such as .NET remoting, Java serialization, or similar) that deserialize untrusted data from local sockets or named pipes without sufficient integrity checks or privilege validation.
RemediationAI
Immediate actions: (1) Check vendor security advisories for CVE-2025-30025 patches and apply immediately to all affected systems, (2) Restrict local user access on affected systems—disable unnecessary user accounts and apply principle of least privilege, (3) Monitor IPC traffic for suspicious serialized payloads or service control anomalies. Workarounds pending patch availability: (1) restrict access to service control sockets/pipes via filesystem ACLs, (2) isolate multi-user systems to trusted users only, (3) implement application whitelisting for service processes, (4) use mandatory access controls (SELinux/AppArmor) to restrict service process capabilities. Once patches are available from vendors, apply in order of system criticality and test in non-production environments first.
More in Camera Station Pro
View allCVE-2025-30026 is a critical authentication bypass vulnerability in AXIS Camera Station Server that allows unauthenticat
CVE-2025-30023 is a critical remote code execution vulnerability in a client-server communication protocol that allows a
AXIS Camera Station Pro contained a flaw to perform a privilege escalation attack on the server as a non-admin user. [CV
Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has identified an issue with a specific file that the
Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for a non-admin user to
An insecure direct object reference allowed a non-admin user to modify or remove certain data objects without having the
An AXIS Camera Station Pro feature can be exploited in a way that allows a non-admin user to view information they are n
A server-side injection was possible for a malicious admin to manipulate the application to include a malicious script w
During an internal security assessment, a Server-Side Request Forgery (SSRF) vulnerability that allowed an authenticated
Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for an authenticated mal
Same weakness CWE-502 – Deserialization of Untrusted Data
View allSame technique Privilege Escalation
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-21110