MEDIUM SeverityCVSS 3.15.4CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
CVE-2026-1185
Last updated May 12, 2026 · Published May 12, 2026
Description
A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. This vulnerability can only be exploited if an attacker can log in to the Axis device using SSH.
Affected products
1 listed- Axis Communications AB:AXIS OS
Mappings
CWE
CWE-732
CAPEC
None listed.
CVE® content © MITRE Corporation. Licensed under the CVE Terms of Use. Terms