CVE Vulnerabilities

CVE-2025-0324

Incomplete Filtering of Special Elements

Published: Jun 02, 2025 | Modified: Jun 02, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

The VAPIX Device Configuration framework allowed a privilege escalation, enabling a lower-privileged user to gain administrator privileges.

Weakness

The product receives data from an upstream component, but does not completely filter special elements before sending it to a downstream component.

References