CVE-2025-0325 – Axis Guard Tour VAPIX API Parameter Injection Vulnerability

June 2, 2025

CVE ID : CVE-2025-0325

Published : June 2, 2025, 8:15 a.m. | 3 hours, 7 minutes ago

Description : A Guard Tour VAPIX API parameter allowed the use of arbitrary values and can be incorrectly called, allowing an attacker to block access to the guard tour configuration page in the web interface of the Axis device.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5435 – Marwal Infotech CMS SQL Injection Vulnerability

Next Article CVE-2025-0358 – Axis VAPIX Device Configuration Privilege Escalation Vulnerability

In-House vs. Outsource Node.js Development Teams: 9 Key Differences for the C-Suite (2025)

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

I ditched my Bluetooth speakers for this slick turntable – and it’s more practical than I thought

This split keyboard offers deep customization – if you’re willing to go all in

I spoke with an AI version of myself, thanks to Hume’s free tool – how to try it

I took a walk with Meta’s new Oakley smart glasses – they beat my Ray-Bans in every way

The details of TC39’s last meeting

The details of TC39’s last meeting

Simple wrapper for Chrome’s built-in local LLM (Gemini Nano)

Online Examination System using PHP and MySQL

Top 7 Computer Performance Test Tools Online (Free & Fast)

Top 7 Computer Performance Test Tools Online (Free & Fast)

10 Best Windows 11 Encryption Software

Google Chrome Is Testing Dynamic Country Detection for Region-Specific Features

CVE-2025-0325 – Axis Guard Tour VAPIX API Parameter Injection Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

CVE-2025-6863 – PHPGurukul Local Services Search Engine Management System SQL Injection Vulnerability

Call me a filthy casual — I recommend this RTX 4050 gaming laptop over any of the powerhouses on Prime Day

CVE-2025-6512 – BRAIN2 Remote Command Execution Vulnerability

CVE-2025-6885 – PHPGurukul Teachers Record Management System SQL Injection Vulnerability

Surprise! FFXIV Patch 7.3 is adding a feature players have begged for since Shadowbringers — I can’t believe it’s finally coming 6 years later

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

CVE-2025-49715 – Dynamics 365 Information Disclosure Vulnerability

PowerToys 0.91 update brings major improvements to Command Palette & more

CVE-2025-0325 – Axis Guard Tour VAPIX API Parameter Injection Vulnerability

Related Posts