CVE-2024-47257:

7.5 CVSS

Description

Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet frames which could lead to the Axis device becoming unavailable in the network.
Axis has released patched AXIS OS versions for the highlighted flaw for products that are still under AXIS OS software support. Please refer to the Axis security advisory for more information and solution.

Classification

CVE ID: CVE-2024-47257

CVSS Base Severity: HIGH

CVSS Base Score: 7.5

Affected Products

Vendor: Axis Communications AB

Product: AXIS Q6128-E PTZ Network Camera

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.44% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://www.axis.com/dam/public/permalink/231088/cve-2024-47257pdf-en-US_InternalID-231088.pdf

Timeline

2024-11-27 14:41:59 UTC
CVE