CVE-2025-30025

Summary

The communication protocol used between the server process and the service control had a flaw that could lead to a local privilege escalation.

Affected Software

VendorProductVersion RangeStatus
Axis Communications ABAXIS Device Manager<5.32affected
Axis Communications ABAXIS Camera Station Pro<6.8affected
Axis Communications ABAXIS Camera Station<6affected

Weaknesses

  • CWE-502: CWE-502 Deserialization of Untrusted Data

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References