SERVER-WEBAPP Axis Network Camera authorization bypass attempt
This event is generated when an attempt to bypass the authorization mechanism for the web interface on an Axis Network Attached Camera is detected.
Web Application Attack
This detection looks for a request containing the pattern "[unprotected page].html/[protected page].srv". This pattern is used to bypass authorization on vulnerable Axis Network Attached Cameras, allowing unauthenticated access to the protected ".srv" page.
- Please see the Axis affected product list for a complete list of affected systems.
Ease of attack
- Cisco Talos Intelligence Group