CVE-2024-47257 — HIGH (7.5)

Vulnerability Description

Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet frames which could lead to the Axis device becoming unavailable in the network. Axis has released patched AXIS OS versions for the highlighted flaw for products that are still under AXIS OS software support. Please refer to the Axis security advisory for more information and solution.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Related Weaknesses (CWE)

CWE-1284

References

https://www.axis.com/dam/public/b7/76/b2/cve-2024-47257pdf-en-US-458044.pdf

FAQ

What is CVE-2024-47257?

CVE-2024-47257 is a vulnerability with a CVSS score of 7.5 (HIGH). Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet frames which could lead to the Axis device becoming unavailable in the network. Axis has released patc...

How severe is CVE-2024-47257?

CVE-2024-47257 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-47257?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.