CVE-2015-8256

Multiple cross-site scripting (XSS) vulnerabilities in Axis network cameras.
References
Link Resource
http://packetstormsecurity.com/files/141674/AXIS-Network-Camera-Cross-Site-Scripting.html Exploit Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/97699 Third Party Advisory VDB Entry
https://www.exploit-db.com/exploits/39683/ Exploit Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/141674/AXIS-Network-Camera-Cross-Site-Scripting.html Exploit Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/97699 Third Party Advisory VDB Entry
https://www.exploit-db.com/exploits/39683/ Exploit Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:axis:network_camera_firmware:-:*:*:*:*:*:*:*
OR cpe:2.3:h:axis:cannon_network_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:explosion-protected_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:fixed_box_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:fixed_bullet_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:fixed_dome_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:modular_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:onboard_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:panoramic_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:ptz_camera:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:thermal_camera:-:*:*:*:*:*:*:*

History

21 Nov 2024, 02:38

Type Values Removed Values Added
References () http://packetstormsecurity.com/files/141674/AXIS-Network-Camera-Cross-Site-Scripting.html - Exploit, Third Party Advisory, VDB Entry () http://packetstormsecurity.com/files/141674/AXIS-Network-Camera-Cross-Site-Scripting.html - Exploit, Third Party Advisory, VDB Entry
References () http://www.securityfocus.com/bid/97699 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/97699 - Third Party Advisory, VDB Entry
References () https://www.exploit-db.com/exploits/39683/ - Exploit, Third Party Advisory, VDB Entry () https://www.exploit-db.com/exploits/39683/ - Exploit, Third Party Advisory, VDB Entry

Information

Published : 2017-04-17 16:59

Updated : 2024-11-21 02:38


NVD link : CVE-2015-8256

Mitre link : CVE-2015-8256

CVE.ORG link : CVE-2015-8256


JSON object : View

Products Affected

axis

  • ptz_camera
  • thermal_camera
  • fixed_box_camera
  • explosion-protected_camera
  • fixed_bullet_camera
  • panoramic_camera
  • cannon_network_camera
  • modular_camera
  • fixed_dome_camera
  • network_camera_firmware
  • onboard_camera
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')