CVE-2025-8998_CVE-2025-8998

3.1 / 10

LOW

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Description

It was possible to upload files with a specific name to a temporary directory, which may result in process crashes and impact usability. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account.

Basic Information

ID CVE-2025-8998

Source Axis

Published Nov 11, 2025 at 07:28

Affected Product

Vendor Axis Communications AB

Product AXIS OS

Version 6.50.0

Affected Versions Axis Communications AB AXIS OS 6.50.0
Axis Communications AB AXIS OS 7.0.0
Axis Communications AB AXIS OS 9.0.0
Axis Communications AB AXIS OS 10.0.0
Axis Communications AB AXIS OS 11.0.0
Axis Communications AB AXIS OS 12.0.0

CWE Classification

CWE-73

References

www.axis.com /dam/public/f5/62/80/cve-2025-8998pdf-en-US-504374.pdf

{
    "lastseen": "",
    "description": "It was possible to upload files with a specific name to a temporary directory, which may result in process crashes and impact usability. This flaw can only be exploited after authenticating with an operator- or\u00a0administrator-privileged service account.",
    "published": "2025-11-11T07:28:40.933Z",
    "modified": "2025-11-11T07:28:40.933Z",
    "type": "cve",
    "title": "CVE-2025-8998",
    "source": "Axis",
    "references": "https://www.axis.com/dam/public/f5/62/80/cve-2025-8998pdf-en-US-504374.pdf",
    "id": "CVE-2025-8998",
    "bulletinFamily": "",
    "cwe": [
        "CWE-73"
    ],
    "cvelist": null,
    "sourceData": "Axis Communications AB AXIS OS 6.50.0\nAxis Communications AB AXIS OS 7.0.0\nAxis Communications AB AXIS OS 9.0.0\nAxis Communications AB AXIS OS 10.0.0\nAxis Communications AB AXIS OS 11.0.0\nAxis Communications AB AXIS OS 12.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 3.1,
        "severity": "LOW",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "AXIS OS",
    "version": "6.50.0",
    "vendor": "Axis Communications AB",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}