CVE-2017-15885

Reflected XSS in the web administration portal on the Axis 2100 Network Camera 2.03 allows an attacker to execute arbitrary JavaScript via the conf_Layout_OwnTitle parameter to view/view.shtml. NOTE: this might overlap CVE-2007-5214.

MISC: https://distributedcompute.com/2017/10/24/axis-2100-network-camera-2-03-xss-vulnerability/
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15885

published: 25. 10. 2017

14 years

257 countries

710k users

4659k calculations

CCTV Calculator

Tools for designing camera systems and computer networks

CVE-2017-15885