Home
MEDIUM: 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:L/SI:L/SA:LDefault status
unaffected
<5.32
affected
Default status
unaffected
<6.8
affected
Default status
unaffected
<6
affected
Description
The communication protocol used between the server process and the service control had a flaw that could lead to a local privilege escalation.
Problem types
CWE-502 Deserialization of Untrusted Data
Product status
<5.32
<6.8
<6
Credits
Noam Moshe of Claroty Team82
References
www.axis.com/.../f2/28/d2/cve-2025-30025pdf-en-US-517962.pdf