{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92462?format=json","vulnerability_id":"VCID-nu8w-fg7v-7ufp","summary":"An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP application.","aliases":[{"alias":"CVE-2025-8108"}],"fixed_packages":[],"affected_packages":[],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-8108","reference_id":"","reference_type":"","scores":[{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07387","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-8108"},{"reference_url":"https://www.axis.com/dam/public/38/20/aa/cve-2025-8108pdf-en-US-504218.pdf","reference_id":"cve-2025-8108pdf-en-US-504218.pdf","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-12T04:57:48Z/"}],"url":"https://www.axis.com/dam/public/38/20/aa/cve-2025-8108pdf-en-US-504218.pdf"}],"weaknesses":[{"cwe_id":732,"name":"Incorrect Permission Assignment for Critical Resource","description":"The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors."},{"cwe_id":1287,"name":"Improper Validation of Specified Type of Input","description":"The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type."}],"exploits":[],"severity_range_score":"6.7 - 6.7","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nu8w-fg7v-7ufp"}