CVE-2017-20047

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2017-20047
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This CVE has been rejected as out of scope in accordance to the Vulnerability Policy of Axis: https://www.axis.com/dam/public/76/fe/26/axis-vulnerability-management-policy-en-US-375421.pdf. Notes: none.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

16 Sep 2022, 20:15

Type Values Removed Values Added
CPE cpe:2.3:o:axis:p3225_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:axis:p3225:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:m3007:-:*:*:*:*:*:*:*
cpe:2.3:o:axis:p1204_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:axis:m3045_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:axis:p1204:-:*:*:*:*:*:*:*
cpe:2.3:o:axis:p3367_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:axis:m3005:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:p3367:-:*:*:*:*:*:*:*
cpe:2.3:o:axis:m3007_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:axis:m3045:-:*:*:*:*:*:*:*
cpe:2.3:o:axis:m3005_firmware:*:*:*:*:*:*:*:*
References
  • {'url': 'https://vuldb.com/?id.98911', 'name': 'N/A', 'tags': ['Third Party Advisory'], 'refsource': 'N/A'}
  • {'url': 'http://seclists.org/fulldisclosure/2017/Mar/41', 'name': 'N/A', 'tags': ['Exploit', 'Mailing List', 'Third Party Advisory'], 'refsource': 'N/A'}
  • {'url': 'https://seclists.org/fulldisclosure/2017/Mar/41', 'name': 'N/A', 'tags': ['Exploit', 'Mailing List', 'Third Party Advisory'], 'refsource': 'N/A'}
CWE CWE-79
CVSS v2 : 3.5
v3 : 5.4 		v2 : unknown
v3 : unknown
Summary A vulnerability classified as problematic was found in AXIS P1204, P3225, P3367, M3045, M3005 and M3007. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This CVE has been rejected as out of scope in accordance to the Vulnerability Policy of Axis: https://www.axis.com/dam/public/76/fe/26/axis-vulnerability-management-policy-en-US-375421.pdf. Notes: none.

24 Jun 2022, 19:17

Type Values Removed Values Added
References (N/A) https://vuldb.com/?id.98911 - (N/A) https://vuldb.com/?id.98911 - Third Party Advisory
References (N/A) https://seclists.org/fulldisclosure/2017/Mar/41 - (N/A) https://seclists.org/fulldisclosure/2017/Mar/41 - Exploit, Mailing List, Third Party Advisory
References (N/A) http://seclists.org/fulldisclosure/2017/Mar/41 - (N/A) http://seclists.org/fulldisclosure/2017/Mar/41 - Exploit, Mailing List, Third Party Advisory
CPE cpe:2.3:h:axis:p3367:-:*:*:*:*:*:*:*
cpe:2.3:o:axis:p1204_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:axis:p3225_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:axis:m3005:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:m3007:-:*:*:*:*:*:*:*
cpe:2.3:o:axis:m3007_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:axis:p3367_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:axis:m3045_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:axis:p3225:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:m3045:-:*:*:*:*:*:*:*
cpe:2.3:h:axis:p1204:-:*:*:*:*:*:*:*
cpe:2.3:o:axis:m3005_firmware:*:*:*:*:*:*:*:*
CWE CWE-79
CVSS v2 : unknown
v3 : unknown 		v2 : 3.5
v3 : 5.4

15 Jun 2022, 18:46

Type Values Removed Values Added
New CVE
Information

Published : 2022-06-15 18:15

Updated : 2024-02-04 22:29

NVD link : CVE-2017-20047

Mitre link : CVE-2017-20047

CVE.ORG link : CVE-2017-20047

JSON object : View

Products Affected

No product.

CWE

No CWE.