6,500 Axis Servers Expose Remoting Protocol; 4,000 in U.S. Vulnerable to Exploits

Source: The Hacker News

Author: info@thehackernews.com (The Hacker News)

URL: https://thehackernews.com/2025/08/6500-axis-servers-expose-remoting.html

ONE SENTENCE SUMMARY:

Security researchers identified multiple vulnerabilities in Axis Communications’ video surveillance products, enabling potential remote code execution and unauthorized access.

MAIN POINTS:

1. Security flaws disclosed in Axis Communications’ video surveillance products.
2. Vulnerabilities could lead to takeover attacks when exploited.
3. Remote code execution possible on Axis Device Manager and Camera Station.
4. Internet scans reveal 6,500 servers using vulnerable Axis.Remoting services.
5. Four main CVEs identified with varying severity (CVSS scores 9.0 to 4.8).
6. Exploits allow adversary-in-the-middle and authentication bypass attacks.
7. Over 4,000 vulnerable servers are located in the U.S.
8. Attackers can hijack and control camera feeds.
9. Successful exploitation grants system-level access to internal networks.
10. Currently, no wild exploitation of these vulnerabilities has been reported.

TAKEAWAYS:

1. CVE-2025-30023 is critically severe with a score of 9.0.
2. Authentication bypass vulnerability poses significant security risk.
3. Patching systems with updated software versions is crucial.
4. Awareness of server exposure to Axis.Remoting services is important.
5. Vigilance needed as no current evidence of exploitation exists.