CVE-2025-6266

Summary

A vulnerability was detected in Teledyne FLIR AX8 up to 1.46. Affected by this vulnerability is an unknown functionality of the file /upload.php. Performing manipulation of the argument File results in unrestricted upload. It is possible to initiate the attack remotely. The exploit is now public and may be used. Upgrading to version 1.49.16 addresses this issue. Upgrading the affected component is recommended. The vendor points out: "FLIR AX8 internal web site has been refactored to be able to handle the reported vulnerabilities."

Affected Software

VendorProductVersion RangeStatus
Teledyne FLIRAX81.0affected
Teledyne FLIRAX81.1affected
Teledyne FLIRAX81.2affected
Teledyne FLIRAX81.3affected
Teledyne FLIRAX81.4affected
Teledyne FLIRAX81.5affected
Teledyne FLIRAX81.6affected
Teledyne FLIRAX81.7affected
Teledyne FLIRAX81.8affected
Teledyne FLIRAX81.9affected
Teledyne FLIRAX81.10affected
Teledyne FLIRAX81.11affected
Teledyne FLIRAX81.12affected
Teledyne FLIRAX81.13affected
Teledyne FLIRAX81.14affected
Teledyne FLIRAX81.15affected
Teledyne FLIRAX81.16affected
Teledyne FLIRAX81.17affected
Teledyne FLIRAX81.18affected
Teledyne FLIRAX81.19affected
Teledyne FLIRAX81.20affected
Teledyne FLIRAX81.21affected
Teledyne FLIRAX81.22affected
Teledyne FLIRAX81.23affected
Teledyne FLIRAX81.24affected
Teledyne FLIRAX81.25affected
Teledyne FLIRAX81.26affected
Teledyne FLIRAX81.27affected
Teledyne FLIRAX81.28affected
Teledyne FLIRAX81.29affected
Teledyne FLIRAX81.30affected
Teledyne FLIRAX81.31affected
Teledyne FLIRAX81.32affected
Teledyne FLIRAX81.33affected
Teledyne FLIRAX81.34affected
Teledyne FLIRAX81.35affected
Teledyne FLIRAX81.36affected
Teledyne FLIRAX81.37affected
Teledyne FLIRAX81.38affected
Teledyne FLIRAX81.39affected
Teledyne FLIRAX81.40affected
Teledyne FLIRAX81.41affected
Teledyne FLIRAX81.42affected
Teledyne FLIRAX81.43affected
Teledyne FLIRAX81.44affected
Teledyne FLIRAX81.45affected
Teledyne FLIRAX81.46affected
Teledyne FLIRAX81.49.16unaffected

Weaknesses

  • CWE-434: Unrestricted Upload
  • CWE-284: Improper Access Controls

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References